During April 2025, Luk developed and integrated a CodeQL security analysis workflow for the chronosphereio/terraform-provider-chronosphere repository. Leveraging GitHub Actions and YAML, Luk automated security scanning by configuring the workflow to run CodeQL analysis on every push and pull request to the main branch, as well as on a weekly schedule. The implementation included Go build steps and initialization of CodeQL tools, enabling comprehensive analysis for both Go and GitHub Actions code. This work established a repeatable security foundation within the CI/CD pipeline, reducing manual review and accelerating vulnerability detection, while laying groundwork for future security enhancements across the repository.