diff --git a/.gitignore b/.gitignore
index b437045..81720fc 100644
--- a/.gitignore
+++ b/.gitignore
@@ -5,7 +5,6 @@ analysis-report/
 *.profraw
 *.profdata
 *.prof
-*.pdf
 *.o
 *.s
 *.a
diff --git a/README.md b/README.md
index 12dd073..e8995fe 100644
--- a/README.md
+++ b/README.md
@@ -78,6 +78,11 @@ Rust) have their own benchmarks. Including benchmarks in the bindings offers a
 more realistic performance estimate, as C-KZG-4844 is not expected to be used
 outside of the bindings.
 
+### Security audit
+
+The source code of c-kzg-4844 was audited by [Sigma Prime](https://sigmaprime.io/) in June 2023. You can find the
+[audit report](https://github.com/ethereum/c-kzg-4844/blob/main/doc/audit/Sigma_Prime_Ethereum_Foundation_KZG_Implementations_Security_Assessment.pdf) in the `doc/audit/` directory.
+
 ### Why C?
 
 The primary reason for choosing C is because
diff --git a/doc/audit/Sigma_Prime_Ethereum_Foundation_KZG_Implementations_Security_Assessment.pdf b/doc/audit/Sigma_Prime_Ethereum_Foundation_KZG_Implementations_Security_Assessment.pdf
new file mode 100644
index 0000000..d5427bf
Binary files /dev/null and b/doc/audit/Sigma_Prime_Ethereum_Foundation_KZG_Implementations_Security_Assessment.pdf differ