From d3b905aac16bbeaf135ecb14058c3dc87c25ee68 Mon Sep 17 00:00:00 2001
From: Peter Gill <peter.gill@townsuite.com>
Date: Fri, 24 May 2024 12:02:47 -0230
Subject: [PATCH] Create SECURITY.md

---
 SECURITY.md | 23 +++++++++++++++++++++++
 1 file changed, 23 insertions(+)
 create mode 100644 SECURITY.md

diff --git a/SECURITY.md b/SECURITY.md
new file mode 100644
index 0000000..5fb5a82
--- /dev/null
+++ b/SECURITY.md
@@ -0,0 +1,23 @@
+# Security Policy
+
+## Supported Versions
+
+
+We release patches for security vulnerabilities.  Which versions are eligible for receiving such patches depends on the CVSS v3.0 Rating:
+
+| CVSS v3.0 | Supported Versions                        |
+| --------- | ----------------------------------------- |
+| 9.0-10.0  | Current and previous LTS release.         |
+| 4.0-8.9   | Most recent release                       |
+
+An LTS release will generally be labelled as with a YEAR.RELEASE format such as __2022.R1__ or __2022.R2__. 
+
+## Reporting a Vulnerability
+
+Please report (suspected) security vulnerabilities to the TownSuite support department. 
+If the issue is confirmed, we will release a patch.
+
+
+### Example Report
+**subject**: Security Vulnerability in TownSuite.TwainScanner
+**content**: TownSuite.TwainScanner version <version number> contains a security vulnerability.  The details are as follows .......