security: Add comprehensive security policy and vulnerability reporting process

This commit is contained in:
Luong NGUYEN
2026-01-09 09:25:00 +01:00
parent 0101d7da84
commit 241baf30bd
4 changed files with 666 additions and 0 deletions

View File

@@ -314,6 +314,18 @@ Contributors are recognized in:
- GitHub contributors page
- Commit history
## Security
When contributing examples and documentation, please follow secure coding practices:
- **Never hardcode secrets or API keys** - Use environment variables
- **Warn about security implications** - Highlight potential risks
- **Use secure defaults** - Enable security features by default
- **Validate inputs** - Show proper input validation and sanitization
- **Include security notes** - Document security considerations
For security issues, see [SECURITY.md](../SECURITY.md) for our vulnerability reporting process.
## Code of Conduct
We are committed to providing a welcoming and inclusive community. Please read [CODE_OF_CONDUCT.md](CODE_OF_CONDUCT.md) for our full community standards.