Merge pull request #742 from superboy-zjc/patch-1

adamghill · web-flow · commit 01e74979b0d5 · 2025-01-21T07:36:48.000-05:00
Create SECURITY.md
diff --git a/SECURITY.md b/SECURITY.md
@@ -2,11 +2,31 @@
 
 ## Supported Versions
 
-| Version  | Supported          |
-| -------- | -------------------|
-| 0.61.x   | :white_check_mark: |
-| < 0.61.x | :x:                |
+The following versions of Django Unicorn are currently supported for security updates:
+
+| Version | Supported          |
+| ------- | ------------------ |
+| 0.61.x  | ✅ Fully supported |
+
+Please ensure you are using the latest version to receive security updates.
+
+---
 
 ## Reporting a Vulnerability
 
-Report vulnerabilities by emailing unicorn@adamghill.com.
+We take security issues seriously and appreciate your efforts to responsibly disclose vulnerabilities.
+
+To report a security vulnerability:
+
+1. **Use our GitHub Security Advisory**:
+   - Navigate to the [Django Unicorn repository](https://github.com/adamghill/django-unicorn).
+   - Go to the **Security** tab and click **Report a vulnerability**.
+2. **Responsible Disclosure**:
+   - Do not publicly disclose the vulnerability until we have had a chance to investigate and provide a fix.
+   - We aim to respond to security reports within **48 hours** and provide a resolution within **7-14 days**.
+  
+---
+
+## Acknowledgments
+
+We appreciate the contributions of security researchers and developers who help us make Django Unicorn secure. Thank you for your support in keeping this project safe and reliable.
