From 8c21beb31cfe96669791c470437312a2fa147109 Mon Sep 17 00:00:00 2001
From: Philippe Lagadec <decalage2@users.noreply.github.com>
Date: Wed, 21 May 2025 22:41:48 +0200
Subject: [PATCH] doc: added SECURITY.md

---
 SECURITY.md | 27 +++++++++++++++++++++++++++
 1 file changed, 27 insertions(+), 0 deletions(-)
 create mode 100644 SECURITY.md

diff --git a/SECURITY.md b/SECURITY.md
new file mode 100644
index 0000000..6d816df
--- /dev/null
+++ b/SECURITY.md
@@ -0,0 +1,27 @@
+# Security Policy
+
+This document describes how to report security issues in the oletools project.
+
+## Supported Versions
+
+The following table shows which versions of the oletools project are
+currently being supported with security updates:
+
+| Version  | Supported          |
+| -------  | ------------------ |
+| <0.60.x  | :x:                |
+| >=0.60.x | :white_check_mark: |
+
+## Reporting a Vulnerability
+
+If you would like to report a vulnerability affecting the oletools project,
+please send a first email to decalage at laposte dot net, without giving
+technical details. You will then be provided with a GPG key to send
+encrypted emails.
+
+Alternatively you may also contact me via X/Twitter, Mastodon or BlueSky
+using private messages (see https://linktr.ee/decalage).
+
+Please note that oletools is a non-commercial open-source project maintained 
+on my spare time. I will do my best to answer in due time and fix 
+vulnerabilities.
--
libgit2 0.21.4