Vulnerability Disclosure/Reporting Policy and SOPs?

Can you please consider implementing a Vulnerability Disclosure/Reporting Policy including associated reporting and handling SOPs?

Some Examples:

Sure thing. Let me put that on my todo list.