Merge pull request #38 from UncleGrumpy/UncleGrumpy-patch-1

UncleGrumpy · web-flow · commit 849f87df48d0 · 2025-08-17T07:05:45.000-07:00
Create SECURITY.md
diff --git a/SECURITY.md b/SECURITY.md
@@ -0,0 +1,29 @@
+<!--
+ Copyright 2025 Davide Bettio <davide@uninstall.it>
+ Copyright 2025 Winford (UncleGrumpy) <winford@object.stream>
+
+ SPDX-License-Identifier: Apache-2.0 OR LGPL-2.1-or-later
+-->
+
+# Security Policy
+
+## Supported Versions
+
+The chart below depicts the versions of `atomvm_packbeam` which can be
+expected to receive security updates.
+
+| Version | Supported          |
+| ------- | ------------------ |
+| 0.7.x   | :white_check_mark: |
+| 0.6.x   | :x:                |
+| < 0.6   | :x:                |
+
+## Reporting a Vulnerability
+Please, do not use GitHub issues for vulnerability reports. Should you discover
+a security vulnerability in `atomvm_packbeam` please email the maintainer and/or
+project lead directly:
+
+Maintainer: Winford (UncleGrumpy), winford at object.stream
+Project Lead: Davide Bettio, davide at uninstall.it
+
+Your submission will be promptly reviewed and validated by a member of our team.
