diff --git a/.circleci/config.yml b/.circleci/config.yml
new file mode 100644
index 00000000..4877e297
--- /dev/null
+++ b/.circleci/config.yml
@@ -0,0 +1,14 @@
+version: 2.1
+
+orbs:
+  prodsec: snyk/prodsec-orb@1.0
+  
+workflows:
+  version: 2
+  CICD:
+    jobs:
+      - prodsec/secrets-scan:
+          name: Scan repository for secrets
+          context:
+            - snyk-bot-slack
+          channel: hammerhead-alerts
diff --git a/.gitleaksignore b/.gitleaksignore
new file mode 100644
index 00000000..0d10b79e
--- /dev/null
+++ b/.gitleaksignore
@@ -0,0 +1 @@
+# add false positives here
diff --git a/.pre-commit-config.yaml b/.pre-commit-config.yaml
new file mode 100644
index 00000000..a63e408d
--- /dev/null
+++ b/.pre-commit-config.yaml
@@ -0,0 +1,7 @@
+# See https://pre-commit.com for more information
+# See https://pre-commit.com/hooks.html for more hooks
+repos:
+  - repo: https://github.com/gitleaks/gitleaks
+    rev: v8.17.0
+    hooks:
+      - id: gitleaks