pkgs/README: Document security expectations for new packages

Motivation: Many package additions add unmaintained or otherwise problematic packages.
Many additions for browser forks, questionable encryption libraries or 10+ years unmaintained software exist.
These are frequently closed, but the expectations are not actually visibly documented.

0 files changed, 0 insertions, 0 deletions