docs: document Trust Center subtab under Security

security-and-compliance/soc2-hipaa.mdx

@@ -4,3 +4,18 @@ description: "Enable instant SOC 2 and HIPAA compliance for your infrastructure
 ---
 
 Porter supports one-click compliant infrastructure, which ensures SOC2/HIPAA compliance for all AWS infrastructure that is managed by Porter, including EKS, RDS, S3, and auxiliary services like Cloudwatch so all infra controls on compliance management platforms such as [Oneleet](https://www.oneleet.com/) and [Thoropass](https://www.thoropass.com/) pass instantly.
+
+## Trust Center
+
+The **Trust Center** subtab under **Security** in the Porter dashboard links directly to Porter's own compliance documentation, hosted on [Oneleet](https://trust.oneleet.com/porter). Use it when you need to share Porter's security posture with auditors, customers, or internal stakeholders.
+
+The tab surfaces four documents, each opening in a new browser tab:
+
+| Card | What it links to |
+| --- | --- |
+| SOC 2 Type II Report | Porter's latest SOC 2 Type II report in the Oneleet evidence library |
+| Pentest Report | The most recent third-party penetration test report |
+| Compliance Overview | Porter's live compliance status across frameworks |
+| Security FAQs | Common questions about Porter's security program |
+
+The Trust Center is available on projects with the Security v2 experience enabled. If you do not see the subtab, contact your Porter representative.