From 89a78380a45615a1e342d090273bbaee6d3e2f13 Mon Sep 17 00:00:00 2001
From: Ryota Murakami <dojce1048@gmail.com>
Date: Tue, 9 Dec 2025 15:06:18 +0900
Subject: [PATCH 1/2] chore(ci): add malware-safe-chain workflow

---
 .github/workflows/malware-safe-chain.yml | 25 ++++++++++++++++++++++++
 1 file changed, 25 insertions(+)
 create mode 100644 .github/workflows/malware-safe-chain.yml

diff --git a/.github/workflows/malware-safe-chain.yml b/.github/workflows/malware-safe-chain.yml
new file mode 100644
index 0000000..e875bf7
--- /dev/null
+++ b/.github/workflows/malware-safe-chain.yml
@@ -0,0 +1,25 @@
+name: Malware Safe Chain
+
+on:
+  pull_request: ~
+  push:
+    branches:
+      - main
+
+jobs:
+  malware-safe-chain:
+    runs-on: ubuntu-latest
+    steps:
+      - uses: actions/checkout@v4
+      - name: Install pnpm
+        uses: pnpm/action-setup@v4
+      - name: Use Node.js
+        uses: actions/setup-node@v4
+        with:
+          node-version: '22'
+
+      - name: Install safe-chain
+        run: curl -fsSL https://raw.githubusercontent.com/AikidoSec/safe-chain/main/install-scripts/install-safe-chain.sh | sh -s -- --ci
+
+      - name: Install dependencies with Safe Chain protection
+        run: pnpm install --frozen-lockfile

From 8f63fd59807c28b340223510af748df4bc9e6162 Mon Sep 17 00:00:00 2001
From: Ryota Murakami <dojce1048@gmail.com>
Date: Wed, 10 Dec 2025 11:23:05 +0900
Subject: [PATCH 2/2] Specify pnpm version in workflow file

---
 .github/workflows/malware-safe-chain.yml | 2 ++
 1 file changed, 2 insertions(+)

diff --git a/.github/workflows/malware-safe-chain.yml b/.github/workflows/malware-safe-chain.yml
index e875bf7..d56b2d5 100644
--- a/.github/workflows/malware-safe-chain.yml
+++ b/.github/workflows/malware-safe-chain.yml
@@ -13,6 +13,8 @@ jobs:
       - uses: actions/checkout@v4
       - name: Install pnpm
         uses: pnpm/action-setup@v4
+        with:
+          version: 10
       - name: Use Node.js
         uses: actions/setup-node@v4
         with: