diff --git a/SECURITY.md b/SECURITY.md
new file mode 100644
index 000000000..3b8ffac2b
--- /dev/null
+++ b/SECURITY.md
@@ -0,0 +1,5 @@
+## Security Policy
+
+### Reporting a Vulnerability
+
+Please report (suspected) security vulnerabilities to **[bjorn.erik.pedersen@gmail.com](mailto:bjorn.erik.pedersen@gmail.com)**. You will receive a response from us within 48 hours. If we can confirm the issue, we will release a patch as soon as possible depending on the complexity of the issue but historically within days.