From 80fbe08874436d5bc2eadf04ec4f1495e0667cb7 Mon Sep 17 00:00:00 2001
From: Devyn <SyntaxRules@users.noreply.github.com>
Date: Tue, 15 Feb 2022 20:30:00 -0700
Subject: [PATCH] doc(security): add a security policy

---
 SECURITY.md | 16 ++++++++++++++++
 1 file changed, 16 insertions(+)
 create mode 100644 SECURITY.md

diff --git a/SECURITY.md b/SECURITY.md
new file mode 100644
index 0000000..60e7df7
--- /dev/null
+++ b/SECURITY.md
@@ -0,0 +1,16 @@
+# Security Policy
+
+## Supported Versions
+
+Security fixes are addressed for the following versions of Showdown.
+
+| Version | Supported          |
+| ------- | ------------------ |
+| 2.0.x   | :white_check_mark: |
+| 1.x.x   | :x: (Known security issue with yargs dependecy) |
+
+Showdown targets the node.js versions targeted in the [node.js release schedule](https://nodejs.org/en/about/releases/). Our test suite follows this release schedule. Consequently, older versions of node may become unusable.
+
+## Reporting a Vulnerability
+
+To report a vulnerability, please add an issue to our main github page: https://github.com/showdownjs/showdown/issues