summaryrefslogtreecommitdiffstats
path: root/packages/markdown/marked/SECURITY.md
diff options
context:
space:
mode:
Diffstat (limited to 'packages/markdown/marked/SECURITY.md')
-rw-r--r--packages/markdown/marked/SECURITY.md10
1 files changed, 10 insertions, 0 deletions
diff --git a/packages/markdown/marked/SECURITY.md b/packages/markdown/marked/SECURITY.md
new file mode 100644
index 00000000..4a2e1cb4
--- /dev/null
+++ b/packages/markdown/marked/SECURITY.md
@@ -0,0 +1,10 @@
+# Security Policy
+
+The only completely secure system is the one that doesn't exist in the first place.
+Having said that, we take the security of Marked very seriously.
+
+## Reporting a Vulnerability
+
+Please disclose potential security issues by email to the project [committers](https://marked.js.org/#/AUTHORS.md) as well as the [listed owners within NPM](https://docs.npmjs.com/cli/owner).
+We will provide an initial assessment of security reports within 48 hours and should apply patches within 2 weeks
+(also, feel free to contribute a fix for the issue).
generated by cgit v1.2.3-1-g7c22 (git 2.25.1) at 2024-07-03 21:53:23 +0000