Merge branch 'ploomber:master' into master

dsevilla · web-flow · commit 0d800a78c86e · 2025-09-03T13:23:07.000+02:00
diff --git a/README.md b/README.md
@@ -51,6 +51,9 @@ conda install jupysql -c conda-forge
 
 [Click here to see the documentation.](https://jupysql.ploomber.io)
 
+## Security
+
+To report security vulnerabilities, see [SECURITY.md](SECURITY.md)
 
 ## Credits
 
diff --git a/SECURITY.md b/SECURITY.md
@@ -0,0 +1,29 @@
+## Security Vulnerability Reporting
+
+If you've discovered a security vulnerability in this project, please report it responsibly through one of the following official channels:
+
+### Preferred Method: GitHub Security Advisories
+1. Go to the **Security** tab of this repository
+2. Click **Report a vulnerability**
+3. Fill out the private vulnerability report form
+
+### Alternative: Email
+Send details to: `security@ploomber.io`
+
+### What to Include
+- Description of the vulnerability
+- Steps to reproduce
+- Potential impact assessment
+- Suggested fix (if available)
+
+### What to Expect
+- Acknowledgment within 48 hours
+- Regular updates on our investigation
+- Credit in our security advisory (if desired)
+
+### Please Do Not
+- Open public issues for security vulnerabilities
+- Contact individual team members directly
+- Join our communication channels to report vulnerabilities
+
+We take security seriously and appreciate responsible disclosure practices.
