There is currently no guidance for contributors or users who discover a security vulnerability in StellarKit API. Add a SECURITY.md file at the repo root that explains the responsible disclosure process — how to report a vulnerability privately, what information to include, and what response timeline to expect. Link it from the README.
Acceptance Criteria: SECURITY.md exists at the repo root with a clear reporting process. Linked from the README under a "Security" section.
There is currently no guidance for contributors or users who discover a security vulnerability in StellarKit API. Add a SECURITY.md file at the repo root that explains the responsible disclosure process — how to report a vulnerability privately, what information to include, and what response timeline to expect. Link it from the README.
Acceptance Criteria: SECURITY.md exists at the repo root with a clear reporting process. Linked from the README under a "Security" section.