Create SECURITY.md

Author: Nekonepan

SECURITY.md

@@ -0,0 +1,34 @@
+# Security Policy
+
+## Supported Versions
+
+| Version | Supported          |
+| ------- | ------------------ |
+| 3.0.0   | :white_check_mark: |
+| 2.0.0   | :x:                |
+| 1.0.0   | :x: |
+
+## Reporting a Vulnerability
+
+If you discover a security vulnerability in this Employee Data Application:
+
+Please DO NOT create a public GitHub issue.
+
+Instead, report it privately via:
+
+* Email: [lutfanalaudin@gmail.com](mailto:lutfanalaudin@gmail.com)
+
+Include:
+
+* Description of the vulnerability
+* Steps to reproduce
+* Possible impact
+
+## Response Time
+
+We aim to respond within 48–72 hours.
+
+## Disclosure Policy
+
+* Vulnerabilities will be fixed before public disclosure
+* Credit will be given to reporters (if desired)