From 5acc34bb6ad846bfe30eed5a88e19d96d6f5a9e9 Mon Sep 17 00:00:00 2001
From: "contrast-oss-sync-bot[bot]"
 <230602124+contrast-oss-sync-bot[bot]@users.noreply.github.com>
Date: Wed, 8 Oct 2025 19:13:32 +0000
Subject: [PATCH] Repo File Sync: synced file(s) with
 Contrast-Security-OSS/common-file-sync

Change-type: patch
---
 security.md | 14 ++++++++++++++
 1 file changed, 14 insertions(+)
 create mode 100644 security.md

diff --git a/security.md b/security.md
new file mode 100644
index 0000000..955ed85
--- /dev/null
+++ b/security.md
@@ -0,0 +1,14 @@
+# Reporting Security Issues
+
+Contrast takes security vulnerabilities seriously. We appreciate your efforts to responsibly disclose your findings, and will make every effort to acknowledge your contributions.
+
+To report a security issue, please see our official [Vulnerability Disclosure Policy
+](https://www.contrastsecurity.com/disclosure-policy)
+
+Contrast will send a response indicating the next steps in handling your report. After the initial reply to your report, the security team will keep you informed of the progress towards a fix and full announcement, and may ask for additional information or guidance.
+
+Report security bugs in third-party modules to the person or team maintaining the module. 
+
+## Learning More About Security
+
+To learn more about securing your applications with Contrast, please see the [our docs](https://docs.contrastsecurity.com/?lang=en).