diff --git a/.github/workflows/secrets-scans.yml b/.github/workflows/secrets-scans.yml
new file mode 100644
index 0000000..62945bb
--- /dev/null
+++ b/.github/workflows/secrets-scans.yml
@@ -0,0 +1,24 @@
+name: Secrets Scan
+
+on: [push, pull_request]
+
+jobs:
+    secrets-scan:
+        # for private repositories
+        # runs-on: [self-hosted, automated-checks]
+        # for public repositories
+        runs-on: [ubuntu-latest]
+
+        steps:
+            - name: Check Out Source Code
+              uses: actions/checkout@v2
+              with:
+                  fetch-depth: 0
+
+            - name: Secrets Scan
+              uses: Typeform/.github/shared-actions/secrets-scan@master
+              with:
+                  docker-registry: ${{ secrets.DOCKER_REGISTRY }}
+                  docker-username: ${{ secrets.DOCKER_USERNAME }}
+                  docker-password: ${{ secrets.DOCKER_PASSWORD }}
+                  gh-token: ${{ secrets.GH_TOKEN }}