From 06e35e51199e7bb7a3d5da1bb40bf3f49196cd14 Mon Sep 17 00:00:00 2001
From: Tangerine Kugelmann <9637909+daallgeier@users.noreply.github.com>
Date: Tue, 30 Jan 2024 23:28:40 +0100
Subject: [PATCH] chore: create security.txt (#3684)

* chore: create security.txt

Adding a security.txt file enables security researchers to quickly and easily see where they can submit security issues and know that they are being taken serious. From the proposal website:

> When security risks in web services are discovered by independent security researchers who understand the severity of the risk, they often lack the channels to disclose them properly. As a result, security issues may be left unreported. security.txt defines a standard to help organizations define the process for security researchers to disclose security vulnerabilities securely.

See also https://securitytxt.org

* homer merge with hedge

* re-add contact email

* move file to public website
---
 packages/twenty-website/public/.well-known/security.txt | 5 +++++
 1 file changed, 5 insertions(+)
 create mode 100644 packages/twenty-website/public/.well-known/security.txt

diff --git a/packages/twenty-website/public/.well-known/security.txt b/packages/twenty-website/public/.well-known/security.txt
new file mode 100644
index 000000000..ed3495bc5
--- /dev/null
+++ b/packages/twenty-website/public/.well-known/security.txt
@@ -0,0 +1,5 @@
+Contact: https://github.com/twentyhq/twenty/issues/new
+Contact: security@twenty.com
+Preferred-Languages: en
+Canonical: https://twenty.com/.well-known/security.txt
+Policy: https://github.com/twentyhq/twenty/security/policy