From 6e2a4b4a252a3f5dd9b87654b9e184f26d3340fa Mon Sep 17 00:00:00 2001
From: Young Yu <youngyu19@gmail.com>
Date: Wed, 17 Jan 2024 19:36:22 -0800
Subject: [PATCH] Update CONTRIBUTING.md

---
 CONTRIBUTING.md | 3 +++
 1 file changed, 3 insertions(+)

diff --git a/CONTRIBUTING.md b/CONTRIBUTING.md
index ac1ea92..4c044b9 100644
--- a/CONTRIBUTING.md
+++ b/CONTRIBUTING.md
@@ -50,3 +50,6 @@ The overall pipeline workflow is:
 7. Create release and tag on GitHub (only on push). The actual step within the workflow that performs this is only run if there were code changes detected.
 
 > :warning: Thus, markdown file changes will need to be manually published to NPM. The release and tags for such changes on GitHub will need to be manually created as well. Code changes means there was a change in a non `.md` file and not in the `./github/` directory.
+
+## Security
+We are using [Snyk](https://snyk.io/) to perform static analysis for security vulnerabilities.