Click "Enable" for "Private vulnerability reporting (Beta)"
Let me know if you rather ask that vulnerabilities to be reported through an email instead.
Besides that, feel free to edit or suggest any changes to this document. It is supposed to reflect how the team want to receive and handle these reports.
Reference Issue
Closes #5723
Description
I've created the SECURITY.md file considering the report vulnerability through security advisory, which is a new GitHub feature.
If you're interested in GitHub's feature, it must be activated for the repository:
Let me know if you rather ask that vulnerabilities to be reported through an email instead.
Besides that, feel free to edit or suggest any changes to this document. It is supposed to reflect how the team want to receive and handle these reports.
Thanks!