diff --git a/.github/workflows/workflow.yml b/.github/workflows/workflow.yml
index 5dc9091..64eeed3 100644
--- a/.github/workflows/workflow.yml
+++ b/.github/workflows/workflow.yml
@@ -75,3 +75,22 @@ jobs:
             uses: "docker://rhysd/actionlint:1.7.3"
             with:
                 args: "-color -verbose -shellcheck="
+
+    octoscan:
+        name: "Octoscan"
+        runs-on: "ubuntu-22.04"
+        timeout-minutes: 1
+        steps:
+        -
+            name: "Checkout repository"
+            uses: "actions/checkout@v4.1.5"
+        -
+            name: "Run Octoscan"
+            id: "octoscan"
+            uses: "synacktiv/action-octoscan@v1.0.0"
+        -
+            name: "Upload SARIF file to GitHub Security"
+            uses: "github/codeql-action/upload-sarif@v3.27.6"
+            with:
+                sarif_file: "${{ steps.octoscan.outputs.sarif_output }}"
+                category: "octoscan"