Add bug bounty and audits (#233)

Author: Jonathan Claudius

SECURITY.md

@@ -1,3 +1,16 @@
 # Security
 
-Find more details about our bug bounty program and 3rd party security audit reports **[here](https://github.com/pyth-network/pyth-client/security/policy)**.
+## Bug Bounty Program (*work in progress*)
+
+We are in the process of designing a **bug bounty program** for Pyth.
+
+In the mean-time, if you find a security issue in Pyth, we ask that you reach out to our team via **[Discord](https://discord.com/invite/pythnetwork)**.
+
+## 3rd Party Security Audits
+
+We engage 3rd party firms to conduct independent security audits of Pyth.  At any given time, we likely have multiple audit streams in progress.
+
+As these 3rd party audits are completed and issues are sufficiently addressed, we make those audit reports public.
+
+- **[April 27, 2022 - Zellic](https://github.com/pyth-network/audit-reports/blob/main/2022_04_27/pyth2wormhole_zellic.pdf)**
+    - **Scope**: *pyth-crosschain (formerly known as pyth2wormhole))*