Hi! I'm currently using your PHPStan strict rules on a library created specifically for inclusion in Drupal core (https://github.com/php-tuf/composer-stager), where we have a policy of evaluating the security policies of packages before adding them as dependencies. I don't see any such policy here (e.g., at https://github.com/thecodingmachine/phpstan-strict-rules/security). Do you have one? If so, would you be kind enough to publish it? If not, would you consider creating one? Thank you!