From b39170e316ece821b6aa033a36128fcd939c1102 Mon Sep 17 00:00:00 2001
From: "Tex M." <164884889+Ranchhand87@users.noreply.github.com>
Date: Fri, 27 Sep 2024 06:51:48 -0500
Subject: [PATCH] add governance docs

---
 CHANGELOG.md  |  3 +++
 CODEOWNERS.md |  8 ++++++++
 SECURITY.md   | 18 ++++++++++++++++++
 3 files changed, 29 insertions(+)
 create mode 100644 CHANGELOG.md
 create mode 100644 CODEOWNERS.md
 create mode 100644 SECURITY.md

diff --git a/CHANGELOG.md b/CHANGELOG.md
new file mode 100644
index 0000000000..0960e193fc
--- /dev/null
+++ b/CHANGELOG.md
@@ -0,0 +1,3 @@
+# Plutus Apps Changelog
+
+All major changes to this project will be documented in this file.
\ No newline at end of file
diff --git a/CODEOWNERS.md b/CODEOWNERS.md
new file mode 100644
index 0000000000..25687584bc
--- /dev/null
+++ b/CODEOWNERS.md
@@ -0,0 +1,8 @@
+# Plutus Apps Codeowners
+
+# These owners will be the default owners for everything in the repository.
+* @
+
+# General reviewers per PR
+#                        Name   Name          
+*                        @      @  
\ No newline at end of file
diff --git a/SECURITY.md b/SECURITY.md
new file mode 100644
index 0000000000..4dd9a5c3df
--- /dev/null
+++ b/SECURITY.md
@@ -0,0 +1,18 @@
+# Security Policy
+
+## Reporting a Vulnerability
+
+Please report (suspected) security vulnerabilities to security@intersectmbo.org. You will receive a
+response from us within 48 hours. If the issue is confirmed, we will release a patch as soon
+as possible.
+
+Please provide a clear and concise description of the vulnerability, including:
+
+* the affected version(s) of plutus-apps,
+* steps that can be followed to exercise the vulnerability,
+* any workarounds or mitigations
+
+If you have developed any code or utilities that can help demonstrate the suspected
+vulnerability, please mention them in your email but ***DO NOT*** attempt to include them as
+attachments as this may cause your Email to be blocked by spam filters.
+See the security file in the [Cardano engineering handbook](https://github.com/input-output-hk/cardano-engineering-handbook/blob/main/SECURITY.md).
\ No newline at end of file