diff --git a/.circleci/config.yml b/.circleci/config.yml
index 48ad5f4..d381d84 100644
--- a/.circleci/config.yml
+++ b/.circleci/config.yml
@@ -1,5 +1,8 @@
 version: 2.1
 
+orbs:
+  prodsec: snyk/prodsec-orb@1
+
 jobs:
   test:
     docker:
@@ -33,6 +36,16 @@ workflows:
   version: 2
   test:
     jobs:
+      - prodsec/secrets-scan:
+          name: Scan repository for secrets
+          context:
+            - snyk-bot-slack
+          channel: team-arch
+          trusted-branch: main
+          filters:
+            branches:
+              ignore:
+                - main    
       - test:
           name: Test
           context: nodejs-install
diff --git a/.gitleaksignore b/.gitleaksignore
new file mode 100644
index 0000000..e69de29
diff --git a/.pre-commit-config.yaml b/.pre-commit-config.yaml
new file mode 100644
index 0000000..79c84ca
--- /dev/null
+++ b/.pre-commit-config.yaml
@@ -0,0 +1,5 @@
+repos:
+  - repo: https://github.com/gitleaks/gitleaks
+    rev: v8.16.2
+    hooks:
+      - id: gitleaks