From 22f274c6cda419aed10bb9e513bcc687333d6faa Mon Sep 17 00:00:00 2001
From: Tony Brix <tony@brix.ninja>
Date: Thu, 23 May 2019 15:16:59 -0500
Subject: [PATCH 1/2] Add security policy

---
 SECURITY.md | 10 ++++++++++
 1 file changed, 10 insertions(+)
 create mode 100644 SECURITY.md

diff --git a/SECURITY.md b/SECURITY.md
new file mode 100644
index 0000000000..180dfe7284
--- /dev/null
+++ b/SECURITY.md
@@ -0,0 +1,10 @@
+# Security Policy
+
+The only completely secure system is the one that doesn't exist in the first place.
+Having said that, we take the security of Marked very seriously.
+
+## Reporting a Vulnerability
+
+Please disclose potential security issues by email to the project committers as well as the listed owners within NPM.
+We will provide an initial assessment of security reports within 48 hours and should apply patches within 2 weeks
+(also, feel free to contribute a fix for the issue).

From 9cc5d802514e2ae414acd4bc4a268a121818b029 Mon Sep 17 00:00:00 2001
From: Tony Brix <tony@brix.ninja>
Date: Thu, 23 May 2019 15:25:01 -0500
Subject: [PATCH 2/2] add links

---
 SECURITY.md | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/SECURITY.md b/SECURITY.md
index 180dfe7284..4a2e1cb432 100644
--- a/SECURITY.md
+++ b/SECURITY.md
@@ -5,6 +5,6 @@ Having said that, we take the security of Marked very seriously.
 
 ## Reporting a Vulnerability
 
-Please disclose potential security issues by email to the project committers as well as the listed owners within NPM.
+Please disclose potential security issues by email to the project [committers](https://marked.js.org/#/AUTHORS.md) as well as the [listed owners within NPM](https://docs.npmjs.com/cli/owner).
 We will provide an initial assessment of security reports within 48 hours and should apply patches within 2 weeks
 (also, feel free to contribute a fix for the issue).