diff --git a/SECURITY.md b/SECURITY.md
new file mode 100644
index 0000000..c711c19
--- /dev/null
+++ b/SECURITY.md
@@ -0,0 +1,11 @@
+# Reporting a security vulnerability
+
+Please do not create a public issue for the vulnerablility. Contact us using email instead.
+
+Make sure to label your report and include the following:
+- Type of issue
+- Detailed instructions on how to reproduce the issue
+- Proof of concept
+- Possible impact of the issue
+
+You are allowed to make the vulnerability public once you receive our clearance, and you will be credited in the fix.
\ No newline at end of file