Add SECURITY.md

[externalPointerVariable]

A SECURITY.md is highly beneficial as it outlines how to report vulnerabilities, enhancing user trust and transparency. It guides contributors in responsible disclosure, aligning with best practices for open-source projects where security is vital. Additionally, many platforms encourage or require it for listing projects in security advisories, and it can define key security policies, such as response times and data handling protocols. Having a SECURITY.md is especially valuable for projects involving sensitive data, demonstrating a proactive approach to security management.

If Assigned I would like to submit a PR to resolve this issue