diff --git a/SECURITY.md b/SECURITY.md
new file mode 100644
index 00000000..d2ad44c7
--- /dev/null
+++ b/SECURITY.md
@@ -0,0 +1,5 @@
+## Reporting a Vulnerability
+
+If you discover a security vulnerability within grunt, please submit a report via [huntr.dev](https://huntr.dev/bounties/?target=https%3A%2F%2Fgithub.com%2Fgruntjs%2Fgrunt). Bounties and CVEs are automatically managed and allocated via the platform.
+
+All security vulnerabilities will be promptly addressed.