diff --git a/SECURITY.md b/SECURITY.md
new file mode 100644
index 00000000000..f0c2eb583a7
--- /dev/null
+++ b/SECURITY.md
@@ -0,0 +1,33 @@
+# Security Policy
+
+## Supported Versions
+
+The project is currently at version **0.1**.  
+It was initially compatible with **Python 3.6+ ~ 3.13.7**,  
+but going forward we are migrating to **Python 3.9+** as the minimum supported version.  
+
+| Version | Supported          | Notes                                      |
+| ------- | ------------------ | ------------------------------------------ |
+| 0.1.x   | :white_check_mark: | Supported on Python 3.9+ (migration target) |
+| < 0.1   | :x:                | Not supported                              |
+
+| Python Version | Supported          | Notes                      |
+| -------------- | ------------------ | -------------------------- |
+| 3.13.x         | :white_check_mark: | Supported                  |
+| 3.12.x         | :white_check_mark: | Supported                  |
+| 3.11.x         | :white_check_mark: | Supported                  |
+| 3.10.x         | :white_check_mark: | Supported                  |
+| 3.9.x          | :white_check_mark: | Minimum required version   |
+| 3.6–3.8        | :x:                | Deprecated (no longer supported) |
+
+---
+
+## Reporting a Vulnerability
+
+To report a security vulnerability:
+
+- Please open a **private security advisory** through GitHub Security Advisories  
+  (Repository → Security → Advisories → Report a vulnerability).     
+- You will receive an initial response within **7 days**.  
+- If the vulnerability is accepted, we will provide a patch or mitigation plan.  
+- If declined, we will explain the reasoning in detail.