From ed4754ce8fc8d2dbcb603ae9a768a36ec2edfae9 Mon Sep 17 00:00:00 2001
From: Michael Morris <105736419+MichaelMorrisEst@users.noreply.github.com>
Date: Thu, 3 Apr 2025 11:32:01 +0100
Subject: [PATCH] Create security-insights.yml

Signed-off-by: Michael Morris <105736419+MichaelMorrisEst@users.noreply.github.com>
---
 .github/security-insights.yml | 33 +++++++++++++++++++++++++++++++++
 1 file changed, 33 insertions(+)
 create mode 100644 .github/security-insights.yml

diff --git a/.github/security-insights.yml b/.github/security-insights.yml
new file mode 100644
index 00000000..cac7b59e
--- /dev/null
+++ b/.github/security-insights.yml
@@ -0,0 +1,33 @@
+header:
+  schema-version: 2.0.0
+  last-updated: '2025-04-03'
+  last-reviewed: '2025-04-03'
+  url: https://github.com/fluxcd/flux2/.github/blob/main/security-insights.yml
+  comment: |
+    This file contains the security insights information for the flux2 project.
+
+project:
+  name: flux2
+  homepage: https://github.com/fluxcd/flux2
+  administrators:
+    - name: 
+      affiliation:
+      social:
+      primary:
+  documentation:
+    quickstart-guide: https://github.com/fluxcd/flux2/blob/main/README.md
+    detailed-guide: https://github.com/fluxcd/flux2/blob/main/README.md
+    code-of-conduct: https://github.com/fluxcd/flux2/blob/main/CODE_OF_CONDUCT.md
+  repositories:
+    - name: fluxcd/flux2
+      url: https://github.com/fluxcd/flux2
+      comment: |
+        Flux is a tool for keeping Kubernetes clusters in sync with sources of configuration (like Git repositories and OCI artifacts), and automating updates to configuration when there is new code to deploy.
+  vulnerability-reporting:
+    reports-accepted: true
+    bug-bounty-available: false
+    contact:
+      name: 
+      email: 
+      primary: 
+    security-policy: