From 45200d2307f481c26b8728ad1664b9ad7eeebd6d Mon Sep 17 00:00:00 2001
From: Jake Scaltreto <jake.scaltreto@circle.com>
Date: Tue, 23 Jan 2024 10:06:36 -0500
Subject: [PATCH] chore(ci): implement code scanning (#15)

Implement PR code scanning and SBOM on release.
---
 .github/pull_request_template.md | 11 +++++++++++
 .github/workflows/scan.yml       | 14 ++++++++++++++
 2 files changed, 25 insertions(+)
 create mode 100644 .github/pull_request_template.md
 create mode 100644 .github/workflows/scan.yml

diff --git a/.github/pull_request_template.md b/.github/pull_request_template.md
new file mode 100644
index 0000000..e734a1f
--- /dev/null
+++ b/.github/pull_request_template.md
@@ -0,0 +1,11 @@
+## Summary
+
+## Detail
+
+## Testing
+
+## Documentation
+
+---
+
+**Requested Reviewers:** @mention
diff --git a/.github/workflows/scan.yml b/.github/workflows/scan.yml
new file mode 100644
index 0000000..1c17b79
--- /dev/null
+++ b/.github/workflows/scan.yml
@@ -0,0 +1,14 @@
+name: Scan
+on:
+  pull_request:
+    branches: [master]
+  push:
+    branches: [master]
+jobs:
+  scan:
+    if: github.event_name == 'pull_request'
+    uses: circlefin/circle-public-github-workflows/.github/workflows/pr-scan.yaml@v1
+
+  release-sbom:
+    if: github.event_name == 'push'
+    uses: circlefin/circle-public-github-workflows/.github/workflows/attach-release-assets.yaml@v1