diff --git a/.github/workflows/ci.yaml b/.github/workflows/ci.yaml
index fc4e88dc5e6d0c0f6dc6fffc416fd91807eee7b7..8885134181467fa5f10e01b9bfcf55e51c75ff01 100644
--- a/.github/workflows/ci.yaml
+++ b/.github/workflows/ci.yaml
@@ -40,6 +40,9 @@ jobs:
     - uses: actions/checkout@v2
       with:
         persist-credentials: false
+    - uses: actions/setup-go@v2
+      with:
+        go-version: ${{ env.golang-version }}
     - run: make --always-make lint
   fmt:
     runs-on: ubuntu-latest
@@ -48,6 +51,9 @@ jobs:
     - uses: actions/checkout@v2
       with:
         persist-credentials: false
+    - uses: actions/setup-go@v2
+      with:
+        go-version: ${{ env.golang-version }}
     - run: make --always-make fmt && git diff --exit-code
   unit-tests:
     runs-on: ubuntu-latest
@@ -56,7 +62,21 @@ jobs:
     - uses: actions/checkout@v2
       with:
         persist-credentials: false
+    - uses: actions/setup-go@v2
+      with:
+        go-version: ${{ env.golang-version }}
     - run: make --always-make test
+  security-audit:
+    runs-on: ubuntu-latest
+    name: Run security analysis on manifests
+    steps:
+    - uses: actions/checkout@v2
+      with:
+        persist-credentials: false
+    - uses: actions/setup-go@v2
+      with:
+        go-version: ${{ env.golang-version }}
+    - run: make --always-make kubescape
   e2e-tests:
     name: E2E tests
     runs-on: ubuntu-latest