From 59db52035a3bb1ab3df60032b51be9003da383f8 Mon Sep 17 00:00:00 2001
From: Eslam Salem <eslam@shieldfy.com>
Date: Sun, 10 Apr 2022 23:55:44 +0200
Subject: [PATCH] Create SECURITY.md

Highly inspired by ExpressJS security policy.
---
 SECURITY.md | 20 ++++++++++++++++++++
 1 file changed, 20 insertions(+)
 create mode 100644 SECURITY.md

diff --git a/SECURITY.md b/SECURITY.md
new file mode 100644
index 00000000..a9f38e96
--- /dev/null
+++ b/SECURITY.md
@@ -0,0 +1,20 @@
+# Security Policy
+This document outlines security procedures and general policies for the EJS template engine project
+
+## Supported Versions
+
+The current supported version.
+
+| Version | Supported          |
+| ------- | ------------------ |
+| 3.x.x   | :white_check_mark: |
+
+## Reporting a Vulnerability
+The EJS team and community take all security bugs in EJS seriously. 
+We appreciate your efforts and responsible disclosure and will make every effort to acknowledge your contributions.
+
+Report security bugs by emailing the lead maintainer in the Readme.md file.
+To ensure the timely response to your report, please ensure that the entirety of the report is contained within the email body and not solely behind a web link or an attachment.
+
+The EJS team will then evaluate your report and will reply with the next steps in handling your report and may ask for additional information or guidance.
+