From e791a818f1b2129792a17e6d35f9f6a8bc2a1337 Mon Sep 17 00:00:00 2001
From: evan-boone <ebo@capraconsulting.no>
Date: Wed, 22 Apr 2026 16:28:13 +0200
Subject: [PATCH 1/2] chore: add aikido scan

---
 .github/workflows/aikido-scan.yml | 23 +++++++++++++++++++++++
 1 file changed, 23 insertions(+)
 create mode 100644 .github/workflows/aikido-scan.yml

diff --git a/.github/workflows/aikido-scan.yml b/.github/workflows/aikido-scan.yml
new file mode 100644
index 00000000..965a8183
--- /dev/null
+++ b/.github/workflows/aikido-scan.yml
@@ -0,0 +1,23 @@
+on:
+  push:
+    branches:
+      - master
+
+name: Aikido Scan
+jobs:
+  aikido-local-scan-repo:
+    runs-on: ubuntu-latest
+    container:
+      image: aikidosecurity/local-scanner:v1.0.131
+    steps:
+      - uses: actions/checkout@de0fac2e4500dabe0009e67214ff5f5447ce83dd # v6.0.2
+        with:
+          token: ${{ secrets.GITHUB_TOKEN }}
+          path: sandbox-infra
+      - name: Run scan
+        run: |
+          aikido-local-scanner scan cals-cli \
+            --apikey ${{ secrets.AIKIDO_API_KEY }} \
+            --linked-team-name cals-cli \
+            --repositoryname cals-cli \
+            --branchname master

From 9ccd12185aacad30e8a19fdda1facdaeaaabece3 Mon Sep 17 00:00:00 2001
From: evan-boone <ebo@capraconsulting.no>
Date: Wed, 22 Apr 2026 16:29:59 +0200
Subject: [PATCH 2/2] chore: add aikido scan

---
 .github/workflows/aikido-scan.yml | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/.github/workflows/aikido-scan.yml b/.github/workflows/aikido-scan.yml
index 965a8183..f037e764 100644
--- a/.github/workflows/aikido-scan.yml
+++ b/.github/workflows/aikido-scan.yml
@@ -13,7 +13,7 @@ jobs:
       - uses: actions/checkout@de0fac2e4500dabe0009e67214ff5f5447ce83dd # v6.0.2
         with:
           token: ${{ secrets.GITHUB_TOKEN }}
-          path: sandbox-infra
+          path: cals-cli
       - name: Run scan
         run: |
           aikido-local-scanner scan cals-cli \