Developed formal security governance documentation for the langgenius/dify-docs repository, focusing on establishing clear security policies and vulnerability reporting procedures. The work involved authoring a comprehensive SECURITY.md file in Markdown, outlining supported versions and detailed steps for responsible disclosure. By integrating security best practices into the documentation, the project improved contributor onboarding and clarified expectations for handling vulnerabilities. This approach reduced potential risks for users and set a foundation for ongoing security management within the repository. The contribution emphasized clarity and maintainability, leveraging documentation skills and a strong understanding of security protocols to address a key aspect of open-source project health.