From fb8bc84330e078f37f192de1ba2c04e7ed456fb2 Mon Sep 17 00:00:00 2001
From: Brendan Early <mymindstorm@evermiss.net>
Date: Thu, 1 Aug 2024 22:28:46 -0700
Subject: [PATCH] Create SECURITY.md (#1238)

* Create SECURITY.md

* Correct typo

* review fixes

* add sentence
---
 README.md   | 11 +++++++++--
 SECURITY.md | 11 +++++++++++
 2 files changed, 20 insertions(+), 2 deletions(-)
 create mode 100644 SECURITY.md

diff --git a/README.md b/README.md
index 44712e5d4..5e9229636 100644
--- a/README.md
+++ b/README.md
@@ -2,9 +2,16 @@
 
 > Authenticator generates 2-Step Verification codes in your browser.
 
-## Available for Chrome, Firefox, Microsoft Edge and Safari
+## Available for Chrome, Firefox, and Microsoft Edge
 
-[<img src="https://raw.githubusercontent.com/wiki/Authenticator-Extension/Authenticator/readme-images/chrome-web-store.png" title="Chrome Web Store" width="170" height="48" />](https://chrome.google.com/webstore/detail/authenticator/bhghoamapcdpbohphigoooaddinpkbai) [<img src="https://raw.githubusercontent.com/wiki/Authenticator-Extension/Authenticator/readme-images/firefox-add-ons.png" title="Firefox Add-ons" width="170" height="48" />](https://addons.mozilla.org/en-US/firefox/addon/auth-helper?src=external-github) [<img src="https://raw.githubusercontent.com/wiki/Authenticator-Extension/Authenticator/readme-images/microsoft-store.png" title="Microsoft Store" height="48">](https://microsoftedge.microsoft.com/addons/detail/ocglkepbibnalbgmbachknglpdipeoio) [<img width="150" alt="Download on the App Store" src="https://developer.apple.com/assets/elements/badges/download-on-the-app-store.svg"/>](https://apps.apple.com/us/app/authen/id1602945200?mt=12)
+[<img src="https://raw.githubusercontent.com/wiki/Authenticator-Extension/Authenticator/readme-images/chrome-web-store.png" title="Chrome Web Store" width="170" height="48" />](https://chrome.google.com/webstore/detail/authenticator/bhghoamapcdpbohphigoooaddinpkbai) [<img src="https://raw.githubusercontent.com/wiki/Authenticator-Extension/Authenticator/readme-images/firefox-add-ons.png" title="Firefox Add-ons" width="170" height="48" />](https://addons.mozilla.org/en-US/firefox/addon/auth-helper?src=external-github) [<img src="https://raw.githubusercontent.com/wiki/Authenticator-Extension/Authenticator/readme-images/microsoft-store.png" title="Microsoft Store" height="48">](https://microsoftedge.microsoft.com/addons/detail/ocglkepbibnalbgmbachknglpdipeoio) 
+
+
+### Safari Edition
+
+A Safari edition of Authenticator is available on the App Store. We do not provide official support for the Safari edition.
+
+[<img width="150" alt="Download on the App Store" src="https://developer.apple.com/assets/elements/badges/download-on-the-app-store.svg"/>](https://apps.apple.com/us/app/authen/id1602945200?mt=12)
 
 ## Build Setup
 
diff --git a/SECURITY.md b/SECURITY.md
new file mode 100644
index 000000000..e4ebbe40c
--- /dev/null
+++ b/SECURITY.md
@@ -0,0 +1,11 @@
+# Security Policy
+
+## Supported Versions
+
+We support the latest versions published on the Chrome, Firefox, and Edge extension stores.
+
+## Reporting a Vulnerability
+
+Report potential vulnerabilities privately via [this form](https://github.com/Authenticator-Extension/Authenticator/security/advisories/new).
+Where appropriate, include a proof-of-concept and reproduction steps.
+We strive to provide an initial response within five days, but as this is a volunteer-run project, we make no guarantees.
\ No newline at end of file