diff --git a/SECURITY.md b/SECURITY.md
new file mode 100644
index 00000000..552f1804
--- /dev/null
+++ b/SECURITY.md
@@ -0,0 +1,16 @@
+# Security Policy
+
+We use dependabot to keep dependencies up to date as much as possible.
+
+## Supported Versions
+
+Currently we support these versions of `pigg`
+
+| Version | Supported          |
+| ------- | ------------------ |
+| 0.1.0   | :white_check_mark: | (pending release!)
+
+## Reporting a Vulnerability
+
+If you learn of a vulnerability that affects `pigg`, if it is a public CVE then you can create an issue in this repo, add the `security` label.
+If under embargo, or you cannot/shouldn't mention in public for some reason, then email one of the Authors (see authors field of `Cargo.toml`)