Merge branch 'v1.1' into aacrawfi/concepts

daprdocs/content/en/concepts/security-concept.md

@@ -145,3 +145,6 @@ The test focused on the following:
 
 The full report can be found [here](/docs/Dapr-july-2020-security-audit-report.pdf).
 
+## Reporting a security issue
+
+Visit [this page]({{< ref support-security-issues.md >}}) to report a security issue to the Dapr maintainers.

daprdocs/content/en/operations/support/support-release-policy.md

@@ -2,7 +2,7 @@
 type: docs
 title: "Supported releases"
 linkTitle: "Supported releases"
-weight: 1000
+weight: 2000
 description: "Release support and upgrade policies "
 ---
 

daprdocs/content/en/operations/support/support-security-issues.md

@@ -0,0 +1,15 @@
+---
+type: docs
+title: "Reporting security issues"
+linkTitle: "Reporting security issues "
+weight: 3000
+description: "How to report a security concern or vulnerability to the Dapr maintainers."
+---
+
+The Dapr organization and team makes security a central focus of how we operate and design our software. From the Dapr binaries to the GitHub release processes, we take numerous steps to ensure user applications and data is secure. For more information visit the [security page]({{< ref security-concept.md >}}).
+
+## Reporting security issues
+
+To report a security issue, please privately email the [Dapr Maintainers (dapr@dapr.io)](mailto:dapr@dapr.io?subject=[Security%20Disclosure]:%20ISSUE%20TITLE)
+
+The Dapr maintainers will triage and respond ASAP and then patch and send an annoucement within 30 days.

daprdocs/content/en/operations/support/support-versioning.md

@@ -2,7 +2,7 @@
 type: docs
 title: "Versioning policy"
 linkTitle: "Versioning "
-weight: 2000
+weight: 1000
 description: "Dapr's versioning policies"
 ---