Skip to content

Add SECURITY.md #30

Description

@nora-weisser

Goal

Add a SECURITY.md describing how to report vulnerabilities responsibly.

Scope

Create SECURITY.md at repo root:

  • How to report a vulnerability privately.
  • Reinforce that credentials live only in a local tests/.env (never committed).

Acceptance criteria

  • SECURITY.md exists at repo root
  • Private reporting channel is documented

Metadata

Metadata

Assignees

No one assigned

    Labels

    documentationImprovements or additions to documentation

    Type

    No type

    Fields

    No fields configured for issues without a type.

    Projects

    No projects

    Milestone

    No milestone

    Relationships

    None yet

    Development

    No branches or pull requests

    Issue actions