From 6fb3e6804f1471412aec5621e75ef1d6965321d9 Mon Sep 17 00:00:00 2001
From: Ashley Williams <ashley666ashley@gmail.com>
Date: Wed, 28 Jun 2017 20:16:00 -0400
Subject: [PATCH] feat(policy): add information on security disclosures

---
 src/doc/policies.md | 11 +++++++++++
 1 file changed, 11 insertions(+)

diff --git a/src/doc/policies.md b/src/doc/policies.md
index 1c18412c2..c8b3c1c28 100644
--- a/src/doc/policies.md
+++ b/src/doc/policies.md
@@ -56,5 +56,16 @@ There are two important, related aspects:
   cannot be directly answered in the hypothetical sense. All of the details
   must be taken into consideration in these kinds of situations.
 
+# Security
+
+Cargo and crates.io are projects that are governed by the Rust Programming 
+Language Team. Safety is one of the core principles of Rust, and to that end,
+we would like to ensure that cargo and crates.io have secure implementations.
+To learn more about disclosing security vulnerabilities, please reference the 
+[Rust Security policy] for more details.
+
+Thank you for taking the time to responsibly disclose any issues you find.
+
+[Rust Security policy]: https://www.rust-lang.org/security.html
 [Code of Conduct]: https://www.rust-lang.org/conduct.html
 [sending us an email]: mailto:help@crates.io
-- 
2.30.2