From 39290c7d9af0f274a797e355398878d2c5c22531 Mon Sep 17 00:00:00 2001
From: Suman Kunwar <sumn2u@hotmail.com>
Date: Sun, 14 Jul 2024 23:27:55 -0500
Subject: [PATCH 1/2] Create SECURITY.md

---
 SECURITY.md | 13 +++++++++++++
 1 file changed, 13 insertions(+)
 create mode 100644 SECURITY.md

diff --git a/SECURITY.md b/SECURITY.md
new file mode 100644
index 0000000..11f6444
--- /dev/null
+++ b/SECURITY.md
@@ -0,0 +1,13 @@
+## Reporting a Vulnerability
+
+If you discover a security vulnerability in annotate-lab, please follow these steps:
+
+1. **Do not create a public issue.**
+2. Send an email to annotatelab[at]gmail.com with the following details:
+   - A description of the vulnerability.
+   - The steps to reproduce the vulnerability.
+   - Any potential impact the vulnerability might have.
+3. We will acknowledge the receipt of your report within 10 business days.
+4. We will work with you to understand and address the issue as quickly as possible.
+
+Thank you for helping us keep annotate-lab secure!

From 3ef1438e2bdc0044e57bc5c9cb2f60f662fe3c06 Mon Sep 17 00:00:00 2001
From: sumn2u <sumn2u@gmail.com>
Date: Sun, 14 Jul 2024 23:32:43 -0500
Subject: [PATCH 2/2] added security info in README

---
 README.md | 8 +++++++-
 1 file changed, 7 insertions(+), 1 deletion(-)

diff --git a/README.md b/README.md
index 97dfb19..62ea04c 100644
--- a/README.md
+++ b/README.md
@@ -58,6 +58,8 @@ Annotate Lab is an open-source application designed for image annotation, compri
 - [Troubleshooting](#troubleshooting-documentation-page)
 - [Contributing](#contributing)
 - [License](#license)
+- [Reporting Security Issues](#reporting-security-issues)
+- [Acknowledgment](#acknowledgment)
 
 ## Project Structure [[documentation page]](https://annotate-docs.dwaste.live/overview/project-structure)
 ```sh
@@ -464,6 +466,10 @@ If you would like to contribute to this project, please fork the repository and
 
 This project is licensed under the [MIT License](./LICENSE).
 
+## Reporting Security Issues
+
+If you find a security vulnerability in annotate-lab, please read our [Security Policy](./SECURITY.md) for instructions on how to report it securely.
+
 ## Acknowledgment
 
-This project is detached from idapgroup [react-image-annotate](https://github.com/idapgroup/react-image-annotate/commit/d35c761ac748ed690c67575002a820843672cde9) and uses some work from [image_annotator](https://github.com/gnamiro/image_annotator/tree/master). 
+This project is detached from idapgroup [react-image-annotate](https://github.com/idapgroup/react-image-annotate/commit/d35c761ac748ed690c67575002a820843672cde9) and uses some work from [image_annotator](https://github.com/gnamiro/image_annotator/tree/master).
\ No newline at end of file