From a6158a24466210c49b5dbf07ff0da5c3e3e7a362 Mon Sep 17 00:00:00 2001
From: CanbiZ <47820557+MickLesk@users.noreply.github.com>
Date: Mon, 11 Nov 2024 17:07:53 +0100
Subject: [PATCH] Create SECURITY.md (#179)

* Create SECURITY.md

* Update SECURITY.md
---
 SECURITY.md | 22 ++++++++++++++++++++++
 1 file changed, 22 insertions(+)
 create mode 100644 SECURITY.md

diff --git a/SECURITY.md b/SECURITY.md
new file mode 100644
index 00000000..e0af45e1
--- /dev/null
+++ b/SECURITY.md
@@ -0,0 +1,22 @@
+## Supported Versions
+This project currently supports the following versions of Proxmox VE:
+
+| Version | Supported          |
+| ------- | ------------------ |
+| 8.2.x   | :white_check_mark: |
+| 8.1.x   | :white_check_mark: |
+| 8.0.x   | Limited support* ❕| 
+| < 8.0   | :x:                |
+
+*Version 8.0.x has limited support. Security updates may not be provided for all issues in this version.
+
+## Reporting a Vulnerability
+
+Security vulnerabilities shouldn’t be reported publicly to prevent potential exploitation. Instead, please report any vulnerabilities privately by reaching out directly to us. You can either join our [Discord server](https://discord.gg/UHrpNWGwkH) and send a direct message to a maintainer or contact us via email at contact@community-scripts.org. Be sure to include a detailed description of the vulnerability and the steps to reproduce it. Thank you for helping us keep our project secure!
+
+Once a vulnerability has been reported, the project maintainers will review it and acknowledge the report within 7 business days. We will then work to address the vulnerability and provide a fix as soon as possible. Depending on the severity of the issue, a patch may be released immediately or included in the next scheduled update.
+
+Please note that not all reported vulnerabilities may be accepted. The project maintainers reserve the right to decline a vulnerability report if it is deemed to be a low-risk issue or if it conflicts with the project's design or architecture. In such cases, we will provide an explanation for the decision.
+
+If you have any questions or concerns about this security policy, please don't hesitate to contact the project maintainers.
+