From 2d3e1855c77d0f99c864b0c9bc1aebd12ddf55a6 Mon Sep 17 00:00:00 2001
From: Igor <iolszewski@soldevelo.com>
Date: Fri, 19 Jun 2026 08:58:55 +0200
Subject: [PATCH] Create infrascan.yml

---
 .github/workflows/infrascan.yml | 32 ++++++++++++++++++++++++++++++++
 1 file changed, 32 insertions(+)
 create mode 100644 .github/workflows/infrascan.yml

diff --git a/.github/workflows/infrascan.yml b/.github/workflows/infrascan.yml
new file mode 100644
index 000000000..4145e71a4
--- /dev/null
+++ b/.github/workflows/infrascan.yml
@@ -0,0 +1,32 @@
+name: InfraScan Audit
+
+on:
+  push:
+  pull_request:
+
+jobs:
+  infrascan:
+    runs-on: ubuntu-latest
+    steps:
+      - name: Checkout code
+        uses: actions/checkout@v4
+
+      - name: Create Reports Directory
+        run: |
+          mkdir -p infrascan-reports
+          chmod 777 infrascan-reports
+
+      - name: Run InfraScan
+        uses: soldevelo/infrascan@v1.0.8
+        with:
+          scanner: comprehensive
+          format: html
+          out: infrascan-reports/report.html
+            
+      - name: Upload InfraScan Report
+        uses: actions/upload-artifact@v4
+        if: always() # Upload report even if the scan step fails
+        with:
+          name: infrascan-report
+          path: infrascan-reports/report.html
+          retention-days: 14