From c7e0d91c4867289cb0647e99639beacf4a51bc20 Mon Sep 17 00:00:00 2001
From: Claude <developers@lethean.io>
Date: Mon, 23 Feb 2026 03:28:13 +0000
Subject: [PATCH] ci: add Forgejo Actions test and security scan workflows

Uses reusable workflows from core/go-devops for Go testing
(with race detector and coverage) and security scanning
(govulncheck, gitleaks, trivy).

Co-Authored-By: Claude Opus 4.6 <noreply@anthropic.com>
---
 .forgejo/workflows/security-scan.yml | 12 ++++++++++++
 .forgejo/workflows/test.yml          | 14 ++++++++++++++
 2 files changed, 26 insertions(+)
 create mode 100644 .forgejo/workflows/security-scan.yml
 create mode 100644 .forgejo/workflows/test.yml

diff --git a/.forgejo/workflows/security-scan.yml b/.forgejo/workflows/security-scan.yml
new file mode 100644
index 0000000..1b5530d
--- /dev/null
+++ b/.forgejo/workflows/security-scan.yml
@@ -0,0 +1,12 @@
+name: Security Scan
+
+on:
+  push:
+    branches: [main, dev, 'feat/*']
+  pull_request:
+    branches: [main]
+
+jobs:
+  security:
+    uses: core/go-devops/.forgejo/workflows/security-scan.yml@main
+    secrets: inherit
diff --git a/.forgejo/workflows/test.yml b/.forgejo/workflows/test.yml
new file mode 100644
index 0000000..4045779
--- /dev/null
+++ b/.forgejo/workflows/test.yml
@@ -0,0 +1,14 @@
+name: Test
+
+on:
+  push:
+    branches: [main, dev]
+  pull_request:
+    branches: [main]
+
+jobs:
+  test:
+    uses: core/go-devops/.forgejo/workflows/go-test.yml@main
+    with:
+      race: true
+      coverage: true