diff --git a/README.md b/README.md
index bdce3e7f..9698f393 100644
--- a/README.md
+++ b/README.md
@@ -3,7 +3,6 @@
 [![Build Status](https://github.com/thoughtbot/clearance/actions/workflows/tests.yml/badge.svg)]( https://github.com/thoughtbot/clearance/actions/workflows/tests.yml?query=branch%3Amain)
 [![Code Climate](https://codeclimate.com/github/thoughtbot/clearance.svg)](https://codeclimate.com/github/thoughtbot/clearance)
 [![Documentation Quality](https://inch-ci.org/github/thoughtbot/clearance.svg?branch=main)](https://inch-ci.org/github/thoughtbot/clearance)
-[![Reviewed by Hound](https://img.shields.io/badge/Reviewed_by-Hound-8E64B0.svg)](https://houndci.com)
 
 Rails authentication with email & password.
 
@@ -63,7 +62,7 @@ Clearance.configure do |config|
   config.url_after_denied_access_when_signed_out = nil
   config.rotate_csrf_on_sign_in = true
   config.same_site = nil
-  config.secure_cookie = false
+  config.secure_cookie = Rails.configuration.force_ssl
   config.signed_cookie = false
   config.sign_in_guards = []
   config.user_model = "User"
@@ -497,4 +496,19 @@ redistributed under the terms specified in the [`LICENSE`] file.
 [`LICENSE`]: /LICENSE
 
 <!-- START /templates/footer.md -->
+## About thoughtbot
+
+![thoughtbot](https://thoughtbot.com/thoughtbot-logo-for-readmes.svg)
+
+This repo is maintained and funded by thoughtbot, inc.
+The names and logos for thoughtbot are trademarks of thoughtbot, inc.
+
+We love open source software!
+See [our other projects][community].
+We are [available for hire][hire].
+
+[community]: https://thoughtbot.com/community?utm_source=github
+[hire]: https://thoughtbot.com/hire-us?utm_source=github
+
+
 <!-- END /templates/footer.md -->
diff --git a/SECURITY.md b/SECURITY.md
new file mode 100644
index 00000000..8847f77d
--- /dev/null
+++ b/SECURITY.md
@@ -0,0 +1,16 @@
+# Security Policy
+
+## Supported Versions
+
+We will provide security updates for the latest 3 versions.
+
+| Version | Security updates |
+| - | - |
+| 2.7.x   | ✅ |
+| 2.6.x   | ✅ |
+| 2.5.x   | ✅ |
+| < 2.5.0 | :x: |
+
+## Reporting a Vulnerability
+
+You can contact <security@thoughtbot.com>. See <https://thoughtbot.com/security> for more information about our security policy.
diff --git a/lib/clearance.rb b/lib/clearance.rb
index 8f7316cc..197b4d37 100644
--- a/lib/clearance.rb
+++ b/lib/clearance.rb
@@ -1,13 +1,13 @@
-require "clearance/configuration"
-require "clearance/sign_in_guard"
-require "clearance/session"
-require "clearance/rack_session"
-require "clearance/back_door"
-require "clearance/controller"
-require "clearance/user"
-require "clearance/engine"
-require "clearance/password_strategies"
-require "clearance/constraints"
+require 'clearance/configuration'
+require 'clearance/sign_in_guard'
+require 'clearance/session'
+require 'clearance/rack_session'
+require 'clearance/back_door'
+require 'clearance/controller'
+require 'clearance/user'
+require 'clearance/password_strategies'
+require 'clearance/constraints'
+require 'clearance/engine'
 
 module Clearance
 end
diff --git a/lib/clearance/engine.rb b/lib/clearance/engine.rb
index 2ee8687b..bc1ba314 100644
--- a/lib/clearance/engine.rb
+++ b/lib/clearance/engine.rb
@@ -1,4 +1,3 @@
-require "clearance"
 require "rails/engine"
 
 module Clearance
diff --git a/lib/clearance/user.rb b/lib/clearance/user.rb
index 7ae2d723..0ba9e43c 100644
--- a/lib/clearance/user.rb
+++ b/lib/clearance/user.rb
@@ -150,7 +150,7 @@ module Validations
 
       included do
         validates :email,
-          email: {strict_mode: true},
+          email: { mode: :strict },
           presence: true,
           uniqueness: {allow_blank: true, case_sensitive: true},
           unless: :email_optional?
diff --git a/spec/models/user_spec.rb b/spec/models/user_spec.rb
index 47a25366..f4615526 100644
--- a/spec/models/user_spec.rb
+++ b/spec/models/user_spec.rb
@@ -5,15 +5,16 @@
   it { is_expected.to have_db_index(:remember_token) }
   it { is_expected.to validate_presence_of(:email) }
   it { is_expected.to validate_presence_of(:password) }
-  it { is_expected.to allow_value("foo;@example.com").for(:email) }
-  it { is_expected.to allow_value("foo@.example.com").for(:email) }
-  it { is_expected.to allow_value("foo@example..com").for(:email) }
   it { is_expected.to allow_value("foo@example.co.uk").for(:email) }
   it { is_expected.to allow_value("foo@example.com").for(:email) }
   it { is_expected.to allow_value("foo+bar@example.com").for(:email) }
   it { is_expected.not_to allow_value("example.com").for(:email) }
   it { is_expected.not_to allow_value("foo").for(:email) }
   it { is_expected.not_to allow_value("foo@").for(:email) }
+  it { is_expected.not_to allow_value("foo@bar").for(:email) }
+  it { is_expected.not_to allow_value("foo;@example.com").for(:email) }
+  it { is_expected.not_to allow_value("foo@.example.com").for(:email) }
+  it { is_expected.not_to allow_value("foo@example..com").for(:email) }
 
   describe "#email" do
     it "stores email in down case and removes whitespace" do