`SECURITY.md` isn't filled in

[JLLeitschuh]

Reading through https://github.com/kubeflow/mcp-apache-spark-history-server/blob/main/SECURITY.md it's very clear that this is just a template.

As it stands it's basically useless for security researchers as there's no description of how vulnerabilities in this project will be handled. It also doesn't include any sort of information about how to get in touch with the maintainers with a vulnerability report.

I currently have a vulnerability to report.

[nabuskey]

Hey @JLLeitschuh,

That was our oversight. It was meant to be filled in when the repo was moved to Kubeflow Organization. We have now updated it in #122. Thanks for finding a vulnerability and we will take a look.