diff --git a/.github/workflows/opengrep-scan.yaml b/.github/workflows/opengrep-scan.yaml
new file mode 100644
index 0000000..9a03034
--- /dev/null
+++ b/.github/workflows/opengrep-scan.yaml
@@ -0,0 +1,29 @@
+name: Opengrep Scan
+
+permissions:
+  contents: read
+
+on:
+  pull_request:
+  workflow_dispatch:
+
+jobs:
+  opengrep-scan:
+    name: "Opengrep Scan"
+    runs-on: ubuntu-latest
+
+    steps:
+      - name: "Checkout Code"
+        uses: actions/checkout@8f4b7f84864484a7bf31766abe9204da3cbe65b3
+
+      - name: "Install Opengrep"
+        run: |
+          curl -fsSL https://raw.githubusercontent.com/opengrep/opengrep/main/install.sh | bash
+          echo "/home/runner/.opengrep/cli/latest" >> $GITHUB_PATH
+
+      - name: "Run Opengrep Scan"
+        run: |
+          opengrep scan \
+            -f opengrep-rules \
+        env:
+          SEMGREP_BASELINE_REF: ${{ github.event.repository.default_branch }}
diff --git a/.github/workflows/semgrep-scan.yaml b/.github/workflows/semgrep-scan.yaml
deleted file mode 100644
index 39817d2..0000000
--- a/.github/workflows/semgrep-scan.yaml
+++ /dev/null
@@ -1,19 +0,0 @@
-name: Semgrep Scan
-
-permissions:
-  contents: read
-
-on: pull_request
-
-jobs:
-  semgrep-scan:
-    name: semgrep-scan
-    runs-on: ubuntu-latest
-    container:
-      image: returntocorp/semgrep
-
-    if: (github.actor != 'dependabot[bot]')
-    steps:
-      - uses: actions/checkout@8f4b7f84864484a7bf31766abe9204da3cbe65b3
-
-      - run: semgrep ci --config=auto