diff --git a/.github/main.workflow b/.github/main.workflow
new file mode 100644
index 0000000..3539452
--- /dev/null
+++ b/.github/main.workflow
@@ -0,0 +1,14 @@
+workflow "Scan for Vulnerabilities with SonarCloud" {
+  on = "push"
+  resolves = ["sonarcloud-scan"]
+}
+
+action "sonarcloud-scan" {
+  uses = "docker://unbounce/sonarcloud-github"
+  secrets = ["SONAR_LOGIN"]
+  env = {
+    "SONAR_PROJECT_KEY" = "unbounce_tattle"
+    "SONAR_ORG" = "unbounceinc"
+  }
+}
+