diff --git a/main.yml b/main.yml
new file mode 100644
index 00000000..d9f748b2
--- /dev/null
+++ b/main.yml
@@ -0,0 +1,22 @@
+Name: Sastscan
+
+On:
+  push:
+Jobs:
+sast_scan:
+  name: run bandit scan 
+  run-on: ubuntu-latest
+
+  steps:
+  - name: checkout code
+    uses: actions/checkout@v2
+
+   - name: setup python
+    uses: actions/setup-python@v2
+    with:
+      python-version: 3.8
+
+    - name: install bandit
+      run: bandit pip -r
+      
+