diff --git a/.github/workflows/pypi_publish.yaml b/.github/workflows/pypi_publish.yaml
new file mode 100644
index 0000000..76d9d52
--- /dev/null
+++ b/.github/workflows/pypi_publish.yaml
@@ -0,0 +1,17 @@
+name: Publish to PyPI.org
+on:
+  release:
+    types: [published]
+jobs:
+  pypi:
+    runs-on: ubuntu-latest
+    steps:
+      - name: Checkout
+        uses: actions/checkout@v3
+        with:
+          fetch-depth: 0
+      - run: python3 -m pip install --upgrade build && python3 -m build
+      - name: Publish package
+        uses: pypa/gh-action-pypi-publish@release/v1
+        with:
+          password: ${{ secrets.PYPI_API_TOKEN }}
diff --git a/README.md b/README.md
index aa4d406..fdbe4c1 100644
--- a/README.md
+++ b/README.md
@@ -276,8 +276,8 @@ Our OpenChat V3 models are licensed under the [Llama 2 Community License](https:
 
 💌 We are a student team from Tsinghua University, working on OpenChat, a project that requires additional computing power or LLMs API keys for further development. If you are interested in our project and would like to offer support, please feel free to reach out to us:
 
-* Wang Guan (Project Leader; imonenext@gmail.com)
-* Cheng Sijie (LeslieCheng0701@outlook.com)
+* Wang Guan (Project Leader) [imonenext at gmail dot com]
+* Cheng Sijie [LeslieCheng0701 at outlook dot com]
 
 We look forward to hearing from you and collaborating on this exciting project!
 
diff --git a/SECURITY.md b/SECURITY.md
index 6bf6e7d..ae7045b 100644
--- a/SECURITY.md
+++ b/SECURITY.md
@@ -9,4 +9,12 @@
 
 ## Reporting a Vulnerability
 
-TODO
+We take security vulnerabilities in our open-source project seriously and appreciate responsible disclosure from users.
+
+If you believe you have found a security vulnerability in our project, please report it to us by creating a Github issue with the label "security" or "vulnerability". Please do not publicly disclose the vulnerability until it has been addressed by our project team.
+
+We will acknowledge receipt of your vulnerability report and will keep you informed of our progress in addressing the vulnerability. If you would like to communicate with us about the vulnerability, please email [imonenext at gmail dot com].
+
+We will not take legal action against users who report vulnerabilities in good faith and in accordance with this disclosure policy.
+
+Thank you for helping us keep our open-source project secure!
diff --git a/ochat/__init__.py b/ochat/__init__.py
index cbe6191..e69de29 100644
--- a/ochat/__init__.py
+++ b/ochat/__init__.py
@@ -1 +0,0 @@
-__version__ = "3.1.0"
\ No newline at end of file
diff --git a/pyproject.toml b/pyproject.toml
index 29fdd12..72d8e0e 100644
--- a/pyproject.toml
+++ b/pyproject.toml
@@ -1,13 +1,13 @@
 [build-system]
-requires = ["setuptools>=61.0"]
+requires = ["setuptools>=45", "setuptools_scm[toml]>=6.2"]
 build-backend = "setuptools.build_meta"
 
 [project]
 name = "ochat"
-version = "3.1.0"
 description = "An efficient framework for training and serving top-tier, open-source conversational LLMs."
 readme = "README.md"
 requires-python = ">=3.8"
+dynamic = ["version"]
 classifiers = [
     "Programming Language :: Python :: 3",
     "License :: OSI Approved :: Apache Software License",
@@ -47,3 +47,5 @@ exclude = ["assets*", "ochat/experimental*"]
 
 [tool.wheel]
 exclude = ["assets*", "ochat/experimental*"]
+
+[tool.setuptools_scm]