From d1f101fe82ea00d66258a475b8e9973ca9730c87 Mon Sep 17 00:00:00 2001
From: Jason O'Donnell <2160810+jasonodonnell@users.noreply.github.com>
Date: Tue, 11 May 2021 10:29:35 -0400
Subject: [PATCH] Add security notice to README

---
 README.md | 6 +++++-
 1 file changed, 5 insertions(+), 1 deletion(-)

diff --git a/README.md b/README.md
index f9770ef2..cd8ad1af 100644
--- a/README.md
+++ b/README.md
@@ -1,5 +1,9 @@
 # Vault + Kubernetes (vault-k8s)
 
+> :warning: **Please note**: We take Vault's security and our users' trust very seriously. If 
+you believe you have found a security issue in Vault K8s, _please responsibly disclose_ 
+by contacting us at [security@hashicorp.com](mailto:security@hashicorp.com).
+
 The `vault-k8s` binary includes first-class integrations between Vault and
 Kubernetes.  Currently the only integration in this repository is the 
 Vault Agent Sidecar Injector (`agent-inject`).  In the future more integrations 
@@ -33,4 +37,4 @@ without forcing Vault users to do a full Vault upgrade.
 
   * A Docker image [`hashicorp/vault-k8s`](https://hub.docker.com/r/hashicorp/vault-k8s) is available. This can be used to manually run `vault-k8s` within a scheduled environment.
 
-  * Raw binaries are available in the [HashiCorp releases directory](https://releases.hashicorp.com/vault-k8s/). These can be used to run vault-k8s directly or build custom packages.
\ No newline at end of file
+  * Raw binaries are available in the [HashiCorp releases directory](https://releases.hashicorp.com/vault-k8s/). These can be used to run vault-k8s directly or build custom packages.