docs: add SECURITY.md, bump to v0.7.25

boxlinknet · boxlinknet · commit fd78c056591c · 2026-03-05T22:47:53.000+03:00
diff --git a/CHANGELOG.md b/CHANGELOG.md
@@ -11,6 +11,13 @@ Versioning: [Semantic Versioning](https://semver.org/spec/v2.0.0.html)
 
 ---
 
+## [0.7.25] - 2026-03-05
+
+### Added
+- `SECURITY.md`: security policy and vulnerability reporting guidelines
+
+---
+
 ## [0.7.24] - 2026-03-05
 
 ### Added
diff --git a/SECURITY.md b/SECURITY.md
@@ -0,0 +1,23 @@
+# Security Policy
+
+## Supported Versions
+
+Only the latest release receives security fixes.
+
+| Version | Supported |
+|---------|-----------|
+| 0.7.x (latest) | Yes |
+| < 0.7 | No |
+
+## Reporting a Vulnerability
+
+Email: mo@boxlink.net
+
+Please do not open a public GitHub issue for security vulnerabilities.
+
+Include:
+- Description of the vulnerability
+- Steps to reproduce
+- Potential impact
+
+You will receive a response within 48 hours.
diff --git a/pyproject.toml b/pyproject.toml
@@ -1,6 +1,6 @@
 [project]
 name = "kwtsms"
-version = "0.7.24"
+version = "0.7.25"
 description = "Python client for kwtSMS, the Kuwait SMS gateway trusted by top businesses to deliver messages worldwide, with private Sender ID, free API testing, and non-expiring credits."
 readme = "README.md"
 requires-python = ">=3.8"
diff --git a/src/kwtsms/__init__.py b/src/kwtsms/__init__.py
@@ -22,4 +22,4 @@
 
 __all__ = ["KwtSMS", "AsyncKwtSMS", "normalize_phone", "clean_message",
            "validate_phone_input", "parse_webhook"]
-__version__ = "0.7.24"
+__version__ = "0.7.25"
