docs: add Security and Tests badges to README (#60)

SebTardif · web-flow · commit 871a0bf965e2 · 2026-06-04T22:54:32.000Z
docs: add Security and Tests badges, organize into two rows

Add Security workflow badge (npm audit, Trivy, Gitleaks, CodeQL).
Add static test count badge (193 passing).
Reorganize badges into two logical rows:
  Row 1: CI, Security, Tests, License
  Row 2: Scorecard, Best Practices, FOSSA

Signed-off-by: Sebastien Tardif &lt;sebtardif@ncf.ca&gt;
diff --git a/README.md b/README.md
@@ -5,10 +5,13 @@
 # Patchloom for VS Code
 
 [![CI](https://github.com/patchloom/patchloom-vscode/actions/workflows/ci.yml/badge.svg)](https://github.com/patchloom/patchloom-vscode/actions/workflows/ci.yml)
+[![Security](https://github.com/patchloom/patchloom-vscode/actions/workflows/security.yml/badge.svg)](https://github.com/patchloom/patchloom-vscode/actions/workflows/security.yml)
+[![Tests](https://img.shields.io/badge/tests-193%20passing-brightgreen)](#)
 [![License: MIT](https://img.shields.io/badge/License-MIT-yellow.svg)](https://github.com/patchloom/patchloom-vscode/blob/main/LICENSE)
+
 [![OpenSSF Scorecard](https://api.securityscorecards.dev/projects/github.com/patchloom/patchloom-vscode/badge)](https://securityscorecards.dev/viewer/?uri=github.com/patchloom/patchloom-vscode)
-[![FOSSA Status](https://img.shields.io/badge/license%20scan-FOSSA-blue)](https://app.fossa.com/projects/git%2Bgithub.com%2Fpatchloom%2Fpatchloom-vscode)
 [![OpenSSF Best Practices](https://www.bestpractices.dev/projects/13100/badge)](https://www.bestpractices.dev/projects/13100)
+[![FOSSA Status](https://img.shields.io/badge/license%20scan-FOSSA-blue)](https://app.fossa.com/projects/git%2Bgithub.com%2Fpatchloom%2Fpatchloom-vscode)
 
 The official VS Code extension for [Patchloom](https://github.com/patchloom/patchloom). Set up your workspace for AI agent workflows in seconds: detect the CLI, generate agent rules, configure MCP servers, and run structured file operations from the command palette.
 
