From c75320e0688cb5afb1f89b15f47c835c0ec43bf2 Mon Sep 17 00:00:00 2001
From: Thom Wiggers <thomwiggers@users.noreply.github.com>
Date: Mon, 22 Jul 2019 14:30:09 +0200
Subject: [PATCH] Create SECURITY.md

Uses the new Gitlab security documenting features/"standard" to explain our security non-policy.
---
 SECURITY.md | 12 ++++++++++++
 1 file changed, 12 insertions(+)
 create mode 100644 SECURITY.md

diff --git a/SECURITY.md b/SECURITY.md
new file mode 100644
index 00000000..fef21ee8
--- /dev/null
+++ b/SECURITY.md
@@ -0,0 +1,12 @@
+# A note on the security of the included implementations and schemes
+
+This project contains (reference) implementations of cryptographic libraries.
+We do not make any security claims about the code included in PQClean.
+In the current state, we distribute reference implementations with minor modifications.
+We did not perform any extensive security analyses.
+This code is suitable for experimental or scientific use.
+We recommend careful expert code review before using any of the included implementations in production environments.
+
+See also the [NIST PQC Forum][forum] for discussion about the cryptographic schemes included in PQClean.
+
+[forum]: https://csrc.nist.gov/Projects/Post-Quantum-Cryptography/Email-List