From 09ff7f03d9bada4904107498f60ae96391aa5cff Mon Sep 17 00:00:00 2001
From: security-bot <security-bot@cora.com.br>
Date: Thu, 14 May 2026 00:08:45 -0300
Subject: [PATCH] feat: add shared security scans workflow

---
 .github/workflows/security-scans.yml | 18 ++++++++++++++++++
 1 file changed, 18 insertions(+)
 create mode 100644 .github/workflows/security-scans.yml

diff --git a/.github/workflows/security-scans.yml b/.github/workflows/security-scans.yml
new file mode 100644
index 0000000..37fc891
--- /dev/null
+++ b/.github/workflows/security-scans.yml
@@ -0,0 +1,18 @@
+name: security-checks
+
+on:
+  pull_request:
+    branches: [main]
+
+jobs:
+  security-static-scans:
+    uses: corabank/cybersec-cicd-tests/.github/workflows/security-static-scans.yml@main
+    secrets:
+      CYBERSEC_SLACK_WEBHOOK: ${{ secrets.CYBERSEC_SLACK_WEBHOOK }}
+
+#  ai-sast:
+#    needs: security-static-scans
+#    uses: corabank/cybersec-cicd-tests/.github/workflows/security-ai-sast.yml@main
+#    secrets:
+#      CYBERSEC_LITE_LLM_URL: ${{ secrets.CYBERSEC_LITE_LLM_URL }}
+#      CYBERSEC_LITE_LLM_API_KEY: ${{ secrets.CYBERSEC_LITE_LLM_API_KEY }}