From 689b2617ff11388b927d8f3b4167959e63d7ba4a Mon Sep 17 00:00:00 2001
From: James Alseth <jalseth@google.com>
Date: Wed, 13 May 2026 21:02:23 +0000
Subject: [PATCH] chore: Add test workflow for github_actions_scan

---
 .github/workflows/test_github_actions_scan.yml | 17 +++++++++++++++++
 1 file changed, 17 insertions(+)
 create mode 100644 .github/workflows/test_github_actions_scan.yml

diff --git a/.github/workflows/test_github_actions_scan.yml b/.github/workflows/test_github_actions_scan.yml
new file mode 100644
index 0000000..4519419
--- /dev/null
+++ b/.github/workflows/test_github_actions_scan.yml
@@ -0,0 +1,17 @@
+name: 'TEST GitHub Actions Scan'
+
+on:
+  pull_request:
+    branches:
+      - 'main'
+
+permissions:
+  contents: 'read'
+  id-token: 'write'
+
+jobs:
+  test-zizmor-scan:
+    uses: 'google-gh-automation/workflows/.github/workflows/github_actions_scan.yml@main'
+    with:
+      wif_provider: 'projects/763312321262/locations/global/workloadIdentityPools/gitsec-gha-artifacts/providers/gitsec-gha-artifacts-provider'
+      zizmor_result_bucket: 'zizmor-43e4'