Add clarification for intentionally malicious code

carols10cents · carols10cents · commit 5bdaecb8182a · 2024-06-06T09:25:21.000-04:00
diff --git a/app/templates/security.hbs b/app/templates/security.hbs
@@ -17,6 +17,9 @@
     owners and their specific policies. Commonly, projects include a file named <code>SECURITY.md</code> that contains the
     crate's security policies and procedures.</p>
 
+  <p>Intentionally malicious code is against <LinkTo @route="policies">crates.io's usage policies; please report crates violating
+    these policies to <a href="mailto:help@crates.io">help@crates.io</a>.</p>
+
   <h2 id='rustsec'>Rustsec Security Advisory Database for receiving security updates</h2>
 
   <p>The <a href="https://rustsec.org/">Rustsec Security Advisory Database</a> maintains advisories about vulnerabilities in
