diff --git a/.github/workflows/main.yaml b/.github/workflows/main.yaml
index c69efdf..70d71c1 100644
--- a/.github/workflows/main.yaml
+++ b/.github/workflows/main.yaml
@@ -22,7 +22,17 @@ jobs:
         run: |
           pip install pytest 
           pip install pylint
+          pip install bandit
           pip install -r requirements.txt
+
+      - name: Run Bandit (Static Security Analysis)
+        run: bandit -r . -f txt -o bandit-report.txt
+
+      - name: Upload Bandit Report (Artifact)
+        uses: actions/upload-artifact@v4
+        with:
+          name: bandit-report
+          path: bandit-report.txt    
       
       - name: Run pylint
         run: pylint .