SECURITY.md: should I have it?
You might have noticed a SECURITY.md file in git repositories of multiple projects. Should you have it? The answer is yes . Who uses SECURITY.md? When a security researcher has a potential vulnerability to communicate to a project, SECURITY.md is one of the first places (if not the first one)...