diff --git a/.circleci/config.yml b/.circleci/config.yml
index 51d69ca..d9d97aa 100644
--- a/.circleci/config.yml
+++ b/.circleci/config.yml
@@ -36,7 +36,7 @@ jobs:
       - checkout
       - heroku/install
       - heroku/deploy-via-git:
-          only-branch: master
+          only-branch: workshop
           force: true
 
 # Orchestrate or schedule a set of jobs, see https://circleci.com/docs/2.0/workflows/
@@ -44,3 +44,7 @@ workflows:
   workflow:
     jobs:
       - deploy
+      - sast
+      - dast:
+          requires:
+            - deploy
diff --git a/crashtest-9cb602e9.html b/crashtest-9cb602e9.html
new file mode 100644
index 0000000..99c6044
--- /dev/null
+++ b/crashtest-9cb602e9.html
@@ -0,0 +1 @@
+9cb602e9-a591-4668-b245-549263a99939
diff --git a/requirements.txt b/requirements.txt
index 39e1640..ed05e0c 100644
--- a/requirements.txt
+++ b/requirements.txt
@@ -1,3 +1,3 @@
-django==2.1.0
+django==3.1.4
 django-heroku==0.3.1
-gunicorn==19.9.0
\ No newline at end of file
+gunicorn==19.9.0
diff --git a/vulnerable/templates/index.html b/vulnerable/templates/index.html
index b307c6f..4f1222f 100644
--- a/vulnerable/templates/index.html
+++ b/vulnerable/templates/index.html
@@ -1,12 +1,13 @@
 <h1>Vulnerable Application</h1>
 
 {% if name %}
-    <p>Hello {{ name | safe }}</p>
+    <p>Hello {{ name }}</p>
     <p><a href="">New Name?</a></p>
 {% else %}
     <p>What is your name?</p>
     <form method="POST">
         {% csrf_token %}
         <input type="text" name="name" placeholder="Max" />
+        <input type="submit" value="Go for it!" />
     </form>
-{% endif %}
\ No newline at end of file
+{% endif %}