From 2ed149b141add0516f49e972cd28c5e47580407a Mon Sep 17 00:00:00 2001
From: RafaelGSS <rafael.nunu@hotmail.com>
Date: Thu, 21 May 2026 12:46:37 -0300
Subject: [PATCH] doc: explicitly ask for reproducible in JS

Signed-off-by: RafaelGSS <rafael.nunu@hotmail.com>
---
 SECURITY.md | 1 +
 1 file changed, 1 insertion(+)

diff --git a/SECURITY.md b/SECURITY.md
index 0e88d7b50702fa..ef2509102fe6a3 100644
--- a/SECURITY.md
+++ b/SECURITY.md
@@ -85,6 +85,7 @@ When reporting security vulnerabilities, reporters must adhere to the following
 
 4. **Report Quality**
    * Provide clear, detailed steps to reproduce the vulnerability.
+   * Include reproducible code written in JavaScript.
    * Include only the minimum proof of concept required to demonstrate the issue.
    * Remove any malicious payloads or components that could cause harm.