From 5f997b52f017c3f7edd9fb5b6918aa5ef987ee0a Mon Sep 17 00:00:00 2001
From: Mike Dalessio <mike@37signals.com>
Date: Wed, 3 Jun 2026 11:06:41 -0400
Subject: [PATCH] Introduce an LLM contribution policy

For context, this topic was discussed in the project slack and I've
suggested some specific wording that I believe captures our thoughts.
---
 README.md | 4 ++++
 1 file changed, 4 insertions(+)

diff --git a/README.md b/README.md
index df766149c9..33e9b91e42 100644
--- a/README.md
+++ b/README.md
@@ -275,6 +275,10 @@ under `ignore:`.
 [List of CVEs addressed by Rails LTS]: https://makandracards.com/railslts/474590-list-cves-addressed-rails-lts
 [PR-847]: https://github.com/rubysec/ruby-advisory-db/pull/847
 
+## Policy on Generative AI Contributions
+
+To safeguard project security and respect our maintainers' volunteer time, a human-in-the-loop is strictly required for all submissions. While AI tools are permitted as assistants, contributors must personally review, understand, and take full responsibility for their work. Any contributions that appear to be unreviewed machine output will be closed immediately, and repeat offenders will be banned from the project and reported.
+
 ## Credits
 
 Please see [CONTRIBUTORS.md].