diff --git a/.github/workflows/semgrep.yml b/.github/workflows/semgrep.yml
index 481c6e5..523a248 100644
--- a/.github/workflows/semgrep.yml
+++ b/.github/workflows/semgrep.yml
@@ -1,7 +1,9 @@
 name: Semgrep
 on:
   workflow_dispatch: {}
-  pull_request: {}
+  pull_request:
+    branches:
+      - main
   push:
     branches:
       - main
diff --git a/whatever.bash b/whatever.bash
new file mode 100644
index 0000000..957fd10
--- /dev/null
+++ b/whatever.bash
@@ -0,0 +1,26 @@
+foo=$(curl http://google.com)
+
+echo "$foo"
+
+#!/bin/bash
+
+x=$(curl -L https://raw.githubusercontent.com/something)
+# ruleid: curl-eval
+eval ${x}
+
+yy=$(curl $SOME_URL)
+eval yy
+# ruleid: curl-eval
+eval ${yy}
+
+scrpt=$(curl -L https://raw.githubusercontent.com/something)
+echo scrpt
+scrpt2=$(${scrpt} | tr -d 1)
+# ruleid: curl-eval
+eval ${scrpt2}
+
+# ruleid: curl-eval
+eval $(curl -L https://raw.githubusercontent.com/something)
+
+# ok: curl-eval
+eval "x=1"