Create SECURITY.md

SECURITY.md

@@ -0,0 +1,29 @@
+## Security Policy
+
+### Reporting a Vulnerability
+
+At MEZO, we take security seriously. If you discover a security vulnerability within MEZO, please report it to us as soon as possible. We appreciate your efforts to responsibly disclose your findings.
+
+To report a security vulnerability, please follow these steps:
+
+1. **Submit an Issue:** Create a new issue on the GitHub repository with the title prefixed by "[Security]". Provide a detailed description of the vulnerability and steps to reproduce it, if possible.
+
+2. **Confidential Disclosure:** If the vulnerability is sensitive or involves confidential information, you may choose to disclose it privately. You can send an email to [email protected] with the subject line prefixed by "[Security]".
+
+3. **Responsible Disclosure:** Allow us time to assess and address the vulnerability before disclosing it publicly. We'll work with you to verify and validate the reported vulnerability and provide updates on the resolution progress.
+
+### Scope
+
+This security policy applies to vulnerabilities discovered within MEZO. We prioritize the security of our users and aim to promptly address reported vulnerabilities.
+
+### Acknowledgement
+
+We appreciate the contributions of security researchers and individuals who report vulnerabilities to us. We'll acknowledge your efforts and contributions in resolving security issues in MEZO.
+
+### Updates
+
+We'll provide updates on the resolution progress of reported vulnerabilities. Once a vulnerability is confirmed and addressed, we'll release a new version of MEZO with the necessary patches and fixes.
+
+### Contact Information
+
+If you have any questions or need further assistance regarding security-related matters, please contact us at [email protected].