Add security page

website/source/layouts/_footer.erb

@@ -12,6 +12,7 @@
             <li><a href="/vmware/">VMware</a></li>
             <li><a href="https://atlas.hashicorp.com/boxes/search">Boxes</a></li>
             <li><a href="/support.html">Support</a></li>
+            <li><a href="/security.html">Security</a></li>
             <li><a href="https://www.amazon.com/gp/product/1449335837/ref=as_li_qf_sp_asin_il_tl?ie=UTF8&camp=1789&creative=9325&creativeASIN=1449335837&linkCode=as2&tag=vagrant-20">Book</a></li>
           </ul>
         </div>

website/source/layouts/about.erb

@@ -14,6 +14,9 @@
         <li<%= sidebar_current("about-sponsors") %>>
           <a href="/sponsors.html">Sponsors</a>
         </li>
+        <li<%= sidebar_current("about-security") %>>
+          <a href="/security.html">Security</a>
+        </li>
       </ul>
     </div>
   <% end %>

website/source/security.html.erb

@@ -0,0 +1,33 @@
+---
+layout: "about"
+sidebar_current: "about-security"
+page_title: "Security"
+description: |-
+  Vagrant takes security very seriously. Please responsibly disclose any security vulnerabilities found and we'll handle it quickly.
+---
+
+<h1>Vagrant Security</h1>
+
+<p>
+  We understand that many users place a high level of trust in HashiCorp
+  and the tools we build. We apply best practices and focus on security to
+  make sure we can maintain the trust of the community.
+</p>
+
+<p>
+  We deeply appreciate any effort to disclose vulnerabilities responsibly.
+</p>
+
+<p>
+  If you would like to report a vulnerability, please see the <a
+  href="https://www.hashicorp.com/security.html">HashiCorp security
+  page</a>, which has the proper email to communicate with as well as our
+  PGP key. Please <strong>do not create an GitHub issue for security
+  concerns</strong>.
+</p>
+
+<p>
+  If you need to report a non-security related bug, please open and issue
+  on the <a href="https://github.com/mitchellh/Vagrant">Vagrant
+  GitHub repository</a>.
+</p>