From 32784082f998ecb27887a2e2bef19d8aff88ee78 Mon Sep 17 00:00:00 2001
From: Seth Vargo <sethvargo@gmail.com>
Date: Sat, 29 Oct 2016 14:00:40 -0400
Subject: [PATCH] Add security page

---
 website/source/layouts/_footer.erb |  1 +
 website/source/layouts/about.erb   |  3 +++
 website/source/security.html.erb   | 33 ++++++++++++++++++++++++++++++
 3 files changed, 37 insertions(+)
 create mode 100644 website/source/security.html.erb

diff --git a/website/source/layouts/_footer.erb b/website/source/layouts/_footer.erb
index 29da13f4c..fecd485bc 100644
--- a/website/source/layouts/_footer.erb
+++ b/website/source/layouts/_footer.erb
@@ -12,6 +12,7 @@
             <li><a href="/vmware/">VMware</a></li>
             <li><a href="https://atlas.hashicorp.com/boxes/search">Boxes</a></li>
             <li><a href="/support.html">Support</a></li>
+            <li><a href="/security.html">Security</a></li>
             <li><a href="https://www.amazon.com/gp/product/1449335837/ref=as_li_qf_sp_asin_il_tl?ie=UTF8&camp=1789&creative=9325&creativeASIN=1449335837&linkCode=as2&tag=vagrant-20">Book</a></li>
           </ul>
         </div>
diff --git a/website/source/layouts/about.erb b/website/source/layouts/about.erb
index 9ee1e5011..2bdec11fb 100644
--- a/website/source/layouts/about.erb
+++ b/website/source/layouts/about.erb
@@ -14,6 +14,9 @@
         <li<%= sidebar_current("about-sponsors") %>>
           <a href="/sponsors.html">Sponsors</a>
         </li>
+        <li<%= sidebar_current("about-security") %>>
+          <a href="/security.html">Security</a>
+        </li>
       </ul>
     </div>
   <% end %>
diff --git a/website/source/security.html.erb b/website/source/security.html.erb
new file mode 100644
index 000000000..858e14bf8
--- /dev/null
+++ b/website/source/security.html.erb
@@ -0,0 +1,33 @@
+---
+layout: "about"
+sidebar_current: "about-security"
+page_title: "Security"
+description: |-
+  Vagrant takes security very seriously. Please responsibly disclose any security vulnerabilities found and we'll handle it quickly.
+---
+
+<h1>Vagrant Security</h1>
+
+<p>
+  We understand that many users place a high level of trust in HashiCorp
+  and the tools we build. We apply best practices and focus on security to
+  make sure we can maintain the trust of the community.
+</p>
+
+<p>
+  We deeply appreciate any effort to disclose vulnerabilities responsibly.
+</p>
+
+<p>
+  If you would like to report a vulnerability, please see the <a
+  href="https://www.hashicorp.com/security.html">HashiCorp security
+  page</a>, which has the proper email to communicate with as well as our
+  PGP key. Please <strong>do not create an GitHub issue for security
+  concerns</strong>.
+</p>
+
+<p>
+  If you need to report a non-security related bug, please open and issue
+  on the <a href="https://github.com/mitchellh/Vagrant">Vagrant
+  GitHub repository</a>.
+</p>