From 27c6e7f40c2dc35860cd7ff69c1efb39c05efa9e Mon Sep 17 00:00:00 2001
From: harunosakura030303-maker <harunosakura030303@gmail.com>
Date: Tue, 5 May 2026 17:50:14 -0700
Subject: [PATCH] ci: add Solidity security and gas analysis workflow

---
 .github/workflows/solidity-security.yml | 36 +++++++++++++++++++++++++
 1 file changed, 36 insertions(+)
 create mode 100644 .github/workflows/solidity-security.yml

diff --git a/.github/workflows/solidity-security.yml b/.github/workflows/solidity-security.yml
new file mode 100644
index 00000000..b77d573b
--- /dev/null
+++ b/.github/workflows/solidity-security.yml
@@ -0,0 +1,36 @@
+name: Solidity Security & Gas Analysis
+
+on:
+  pull_request:
+    paths:
+      - '**/*.sol'
+      - 'contracts/**'
+      - 'src/**'
+  push:
+    branches: [main, master]
+    paths:
+      - '**/*.sol'
+      - 'contracts/**'
+      - 'src/**'
+
+jobs:
+  security-audit:
+    runs-on: ubuntu-latest
+    name: Security & Gas Analysis
+    steps:
+      - uses: actions/checkout@v4
+
+      - name: Solidity Security Audit
+        uses: harunosakura030303-maker/solidity-audit-action@v1
+        with:
+          path: 'contracts'
+          severity: 'medium'
+
+      - name: Gas Usage Report
+        uses: harunosakura030303-maker/solidity-gas-reporter-action@v1
+        with:
+          path: 'contracts'
+          threshold: '500000'
+          post-comment: 'true'
+        env:
+          GITHUB_TOKEN: ${{ secrets.GITHUB_TOKEN }}