diff --git a/.github/workflows/check.yml b/.github/workflows/check.yml
index 3fdff82d601..bd73f97f6d5 100644
--- a/.github/workflows/check.yml
+++ b/.github/workflows/check.yml
@@ -60,6 +60,10 @@ jobs:
         pip --version
         bin/check/install_prerequisites.sh
 
+    - name: Zizmor
+      if: always()
+      run: bin/check/zizmor.sh --github-token ${GITHUB_TOKEN} .github/workflows/*.yml
+
     - name: Check Rust version
       if: always()
       run: |
diff --git a/bin/check/zizmor.sh b/bin/check/zizmor.sh
new file mode 100755
index 00000000000..1141cbb40d4
--- /dev/null
+++ b/bin/check/zizmor.sh
@@ -0,0 +1,91 @@
+#!/bin/bash
+set -Eeuo pipefail
+
+# functions
+function init_terminal_colors(){
+    color_red=$(echo -ne "\033[1;31m")
+    color_green=$(echo -ne "\033[1;32m")
+    color_reset=$(echo -ne "\033[0m")
+}
+
+function usage(){
+    echo
+    echo "Usage: $(basename "$0") [Options]... file1 file2..."
+    echo
+    echo "Options: #mandatory #optional"
+    echo
+    echo "  --help #optional"
+    echo "      This help text"
+    echo
+    echo "  --github-token <github token access> #mandatory"
+    echo "      specify github user token"
+    echo "        : example: --github-token ghp_kJvDuaalZidk3nB1uYtgsqMrkQ5Hkh76jh2o"
+}
+
+function consume_args(){
+    github_token=
+    files_count=0
+    while [[ $# -gt 0 ]] ; do
+        case "$1" in
+        --help)
+            usage
+            exit 0
+            ;;
+        --github-token)
+            if [[ -n ${2:-} ]] ; then
+                github_token="$2"
+                shift
+                shift
+            else
+                echo "${color_red}Error${color_reset} - Option $1 can not be null."
+                usage >&2
+                return 1
+            fi
+            ;;
+        *)
+            if [[ -f ${1} ]] ; then
+                files+=("$1")
+                files_count=$((files_count+1))
+                shift
+            else
+                echo "${color_red}Error${color_reset} - $1 is not a file or is not readable"
+                usage >&2
+                return 1
+            fi
+            ;;
+        esac
+    done
+    if [[ -z "${github_token}" ]] ; then
+        echo "${color_red}Error${color_reset} - Option --github_token is mandatory."
+        usage >&2
+        return 1
+    fi
+    if [[ $files_count == 0 ]] ; then
+        echo "${color_red}Error${color_reset} - You must provide at least one file for analysis."
+        usage >&2
+        return 1
+    fi
+    if ! (command -v zizmor >/dev/null 2>&1) ; then
+        echo "${color_red}Error${color_reset} - Zizmor has to be installed on your system (https://woodruffw.github.io/zizmor/installation)."
+        return 1
+    fi
+}
+
+# main
+init_terminal_colors
+consume_args "$@"
+zizmor --version
+error_count=0
+for file in  "${files[@]}" ; do
+    zizmor \
+        --min-severity low \
+        --min-confidence medium \
+        --gh-token "${github_token}" \
+        "${file}" || error_count=$((error_count+1))
+done
+if [[ $error_count -gt 0 ]] ; then
+    echo "${color_red}There are problems with github workflows${color_reset}"
+    exit 1
+else
+    echo "${color_green}No problem with github workflows${color_reset}"
+fi