From 4d7805277db8c640f534e9afac51c919e9f62d85 Mon Sep 17 00:00:00 2001
From: Sebastien Bacher <sebastien.bacher@canonical.com>
Date: Thu, 3 Oct 2024 15:32:56 +0200
Subject: [PATCH] Add instructions on how to report security issues

---
 SECURITY.md | 8 ++++++++
 1 file changed, 8 insertions(+)
 create mode 100644 SECURITY.md

diff --git a/SECURITY.md b/SECURITY.md
new file mode 100644
index 0000000..aa3118c
--- /dev/null
+++ b/SECURITY.md
@@ -0,0 +1,8 @@
+# How to report a security issue with the gnome-sdk snaps
+
+The easiest way to report a security issue is through [GitHub](https://github.com/ubuntu/gnome-sdk/security/advisories/new).
+See [Privately reporting a security vulnerability](https://docs.github.com/en/code-security/security-advisories/guidance-on-reporting-and-writing/privately-reporting-a-security-vulnerability)
+for instructions.
+
+The [Ubuntu Security disclosure and embargo policy](https://ubuntu.com/security/disclosure-policy)
+contains more information about what you can expect when you contact us and what we expect from you.