Add a security policy

[JamieSlome]

Hey there!

I belong to an open source security research community, and a member (@wninayyds) has found an issue, but doesn’t know the best way to disclose it.

If not a hassle, might you kindly add a SECURITY.md file with an email, or another contact method? GitHub recommends this best practice to ensure security issues are responsibly disclosed, and it would serve as a simple instruction for security researchers in the future.

Thank you for your consideration, and I look forward to hearing from you!

(cc @huntr-helper)

[Docteh]

You might want to consult https://www.gnu.org/software/security/ for security issues. This particular repository appears to be a mirror ran by a third party.

https://github.com/mirror takes the time to specify they are not affiliated with GitHub, so I take that to mean they are also not affiliated with any of the mirrored repositories.