Add a default file where we point to the default ASF policies
diff --git a/.github/ b/.github/
new file mode 100644
index 0000000..5655e02
--- /dev/null
+++ b/.github/
@@ -0,0 +1,7 @@
+# Security Policy
+This is a project of the [Apache Software Foundation]( and follows the ASF [vulnerability handling process](
+## Reporting a Vulnerability
+To report a new vulnerability you have discovered please follow the [ASF vulnerability reporting process](