diff --git a/.github/workflows/ci.yml b/.github/workflows/ci.yml
new file mode 100644
index 00000000000..b224859364e
--- /dev/null
+++ b/.github/workflows/ci.yml
@@ -0,0 +1,22 @@
+name: ci
+
+on:
+  pull_request:
+    branches: [main]
+
+jobs:
+  tests:
+    name: Tests
+    runs-on: ubuntu-latest
+
+    steps:
+      - name: Check out code
+        uses: actions/checkout@v4
+
+      - name: Set up Go
+        uses: actions/setup-go@v5
+        with:
+          go-version: "1.25.1"
+
+      - name: Run Go tests
+        run: go test ./... -cover
\ No newline at end of file
diff --git a/README.md b/README.md
index c2bec0368b7..c7a2b9616dc 100644
--- a/README.md
+++ b/README.md
@@ -1,3 +1,5 @@
+![Test Info](https://github.com/pbearatx/learn-cicd-starter/actions/workflows/ci.yml/badge.svg)
+
 # learn-cicd-starter (Notely)
 
 This repo contains the starter code for the "Notely" application for the "Learn CICD" course on [Boot.dev](https://boot.dev).
@@ -20,4 +22,6 @@ go build -o notely && ./notely
 
 *This starts the server in non-database mode.* It will serve a simple webpage at `http://localhost:8080`.
 
-You do *not* need to set up a database or any interactivity on the webpage yet. Instructions for that will come later in the course!
+You do *not* need to set up a database or any interactivity on the webpage yet. Instructions for that will come later in the course
+
+Patrick's version of Boot.dev's Notely app.
diff --git a/internal/auth/auth_test.go b/internal/auth/auth_test.go
new file mode 100644
index 00000000000..d3fedfee59b
--- /dev/null
+++ b/internal/auth/auth_test.go
@@ -0,0 +1,34 @@
+package auth
+
+import (
+	"net/http"
+	"reflect"
+	"testing"
+)
+
+func TestGetAPIKey(t *testing.T) {
+	header := http.Header{
+		"Authorization": []string{"ApiKey my-secret-key"},
+	} 
+	got, _ := GetAPIKey(header)
+	want := "my-secret-key"
+	if !reflect.DeepEqual(want, got){
+		t.Fatalf("expected: %v, got: %v", want, got)
+	}
+}
+func TestGetAPIKey_NoHeader(t *testing.T) {
+	header := http.Header{}
+	_, err := GetAPIKey(header)
+	if err != ErrNoAuthHeaderIncluded {
+		t.Fatalf("expected: %v, got: %v", ErrNoAuthHeaderIncluded, err)
+	}
+}
+func TestGetAPIKey_MalformedHeader(t *testing.T) {
+	header := http.Header{
+		"Authorization": []string{"Bearer my-secret-key"},
+	} 
+	_, err := GetAPIKey(header)
+	if err == nil || err.Error() != "malformed authorization header" {
+		t.Fatalf("expected: %v, got: %v", "malformed authorization header", err)
+	}
+}
\ No newline at end of file