diff --git a/.github/workflows/factory-code-review.yml b/.github/workflows/factory-code-review.yml
new file mode 100644
index 0000000..f59cc1d
--- /dev/null
+++ b/.github/workflows/factory-code-review.yml
@@ -0,0 +1,25 @@
+# factory-automation: 0cc562aa-fc20-481a-bfdf-5897bc6121a7
+name: Code review
+"on":
+  workflow_dispatch: {}
+  pull_request:
+    types:
+      - opened
+permissions:
+  contents: read
+  pull-requests: write
+  issues: write
+jobs:
+  run:
+    runs-on: ubuntu-latest
+    steps:
+      - name: Checkout
+        uses: actions/checkout@v4
+      - name: Run Factory droid-action
+        uses: Factory-AI/droid-action@main
+        with:
+          org_id: ${{ secrets.FACTORY_ORG_ID }}
+          api_key: ${{ secrets.FACTORY_API_KEY }}
+          automatic_review: true
+          automatic_security_review: true
+          prompt: Automatic code review with security review enabled on pull requests.