From ed8a8cc82cb9cc9fef91bf487e0baa4330736de3 Mon Sep 17 00:00:00 2001
From: Lucas Ramage <ramage.lucas@protonmail.com>
Date: Wed, 17 Apr 2019 18:34:17 -0400
Subject: [PATCH] Provide instruction regarding private disclosures

Bug: https://github.com/proot-me/proot/issues/157
---
 doc/security.txt | 19 +++++++++++++++++++
 1 file changed, 19 insertions(+)
 create mode 100644 doc/security.txt

diff --git a/doc/security.txt b/doc/security.txt
new file mode 100644
index 00000000..8a297eb5
--- /dev/null
+++ b/doc/security.txt
@@ -0,0 +1,19 @@
+How to report security vulnerabilities in PRoot?
+================================================
+
+This document provides instruction on privately
+disclosing security vulnerabilities found in PRoot or CARE.
+
+Vulnerabilities
+---------------
+
+Fortunately, there have yet to be any serious flaws
+found in the PRoot / CARE source code.
+
+Confidential Contacts
+---------------------
+
+The developers below are to be contacted directly via encrypted email:
+
+Lucas Ramage | ramage.lucas@protonmail.com | 0x5D804A8DCFE9DC63
+