diff --git a/.github/workflows/amplify.yml b/.github/workflows/amplify.yml
new file mode 100644
index 0000000..a0a2963
--- /dev/null
+++ b/.github/workflows/amplify.yml
@@ -0,0 +1,22 @@
+
+    name: Amplify Security
+    on:
+        pull_request: {}
+        workflow_dispatch: {}
+        push:
+            branches: ["master", "main"]
+
+    permissions:
+        contents: read
+        id-token: write
+
+    jobs:
+        amplify-security-scan:
+            name: Amplify Security Scan
+            runs-on: ubuntu-latest
+            if: (github.actor != 'dependabot[bot]')
+            steps:
+                - name: Checkout
+                  uses: actions/checkout@v4
+                - name: Amplify Runner
+                  uses: amplify-security/runner-action@v0.1.0