Developed and integrated a security scanning workflow for the confidential-containers/cloud-api-adaptor repository, focusing on automating vulnerability detection within the CI pipeline. Leveraged GitHub Actions and YAML to build a process that runs the zizmor security scanner on every push to main, pull request, and on a scheduled weekly basis. This approach enabled continuous monitoring of code changes and proactive identification of security issues before integration. The workflow included PR-targeted scanning, ensuring that all code contributions undergo automated security checks. The work emphasized CI/CD best practices and security automation, enhancing the repository’s overall security posture through consistent, automated vulnerability reporting.