diff --git a/SECURITY.md b/SECURITY.md
new file mode 100644
index 000000000..6d8fe10e4
--- /dev/null
+++ b/SECURITY.md
@@ -0,0 +1,5 @@
+# Security Policy
+
+## Reporting a Vulnerability
+
+To report a vulnerability in Python-Markdown, [open a private vulnerability report](https://github.com/Python-Markdown/markdown/security/advisories/new) and you can create a patch on a private fork or, after reporting the problem, our maintainers will fix it as soon as possible.