From 699a48f84b371a27c6a12509e1657814cba6eebf Mon Sep 17 00:00:00 2001
From: Patrick Steinhardt <ps@pks.im>
Date: Mon, 29 Jan 2018 07:41:54 +0000
Subject: [PATCH] README.md: add notes on how to report security issues

---
 README.md | 6 ++++++
 1 file changed, 6 insertions(+)

diff --git a/README.md b/README.md
index 6c1d635fb..9fe99d8d5 100644
--- a/README.md
+++ b/README.md
@@ -76,6 +76,12 @@ on a specific repository, please provide a link to it if possible.
 
 We ask that you not open a GitHub Issue for help, only for bug reports.
 
+**Reporting Security Issues**
+
+In case you think to have found a security issue with libgit2, please do not
+open a public issue.  Instead, you can report the issue to the private mailing
+list [security@libgit2.com](mailto:security@libgit2.com).
+
 What It Can Do
 ==============