Addition of security policy?

[Ahlam-Banu]

Would be good to know how the project handles life cycle and security bugs/vulnerabilities. Definition from scorecard is good start https://github.com/ossf/scorecard/blob/main/docs/checks.md#security-policy
and this could be helpful during implementation: Adding Security Policy to Your Repository

[love-linger]

I don't know much about these. If you think it's necessary, you're welcome to submit a PR.