From 1da6a7de7d418d3e9fd228528cf64d9c918be52c Mon Sep 17 00:00:00 2001
From: Jaclyn Taroni <19534205+jaclyn-taroni@users.noreply.github.com>
Date: Fri, 1 Mar 2024 09:16:13 -0500
Subject: [PATCH 1/2] Create SECURITY.md

---
 SECURITY.md | 8 ++++++++
 1 file changed, 8 insertions(+)
 create mode 100644 SECURITY.md

diff --git a/SECURITY.md b/SECURITY.md
new file mode 100644
index 000000000..b3e61ccde
--- /dev/null
+++ b/SECURITY.md
@@ -0,0 +1,8 @@
+# Security Policy
+
+## Reporting a Vulnerability
+
+To notify us about a security issue or flaw, please email a description of the issue, as well as any steps for mitigation (if known), to report@ccdatalab.org.
+**Please do not file an issue, start a GitHub Discussion, or file a pull request to report a security issue.**
+
+We will do our best to investigate and fix the problem quickly. 

From aae04470ec3bda7220400e2cfa68a347c1998043 Mon Sep 17 00:00:00 2001
From: Jaclyn Taroni <19534205+jaclyn-taroni@users.noreply.github.com>
Date: Fri, 1 Mar 2024 09:20:33 -0500
Subject: [PATCH 2/2] Cover public forums generally with specific Slack example

---
 SECURITY.md | 5 +++--
 1 file changed, 3 insertions(+), 2 deletions(-)

diff --git a/SECURITY.md b/SECURITY.md
index b3e61ccde..62c246273 100644
--- a/SECURITY.md
+++ b/SECURITY.md
@@ -2,7 +2,8 @@
 
 ## Reporting a Vulnerability
 
-To notify us about a security issue or flaw, please email a description of the issue, as well as any steps for mitigation (if known), to report@ccdatalab.org.
-**Please do not file an issue, start a GitHub Discussion, or file a pull request to report a security issue.**
+To notify us about a security issue or flaw, please email a description of the issue, as well as any steps for mitigation (if known), to <report@ccdatalab.org>.
+
+**Please do not file an issue, start a GitHub Discussion, file a pull request, or post in any other public forum (e.g., Cancer Data Science Slack) to report a security issue.**
 
 We will do our best to investigate and fix the problem quickly.