Update SECURITY.md

Open Source Infrastructure as Code Service Account · Open Source Infrastructure as Code Service Account · commit 3d5d31fefac2 · 2025-08-02T14:25:15.000-04:00
diff --git a/SECURITY.md b/SECURITY.md
@@ -0,0 +1,12 @@
+# <img align="left" width="45" height="45" src="https://github.com/user-attachments/assets/24215c8b-4b69-4b58-922d-db244f4a5e30"> Security Policy
+
+Open Source Infrastructure (as Code) exposes identifying information that would not be exposed in a traditional
+private organization to share knowledge and best practices. This is a net positive for
+the community, but it does come with some risks.
+
+## Reporting a Vulnerability
+
+Privately discuss, fix, and publish information about security vulnerabilities in this repository by drafting a new
+[security advisory](https://github.com/osinfra-io/opentofu-kubernetes-datadog-operator/security/advisories/new).
+
+<!-- This file is managed by the osinfra-io/github-organization-management repository and should not be edited directly. -->
