diff --git a/.github/workflows/checks.yaml b/.github/workflows/checks.yaml
new file mode 100644
index 0000000..3189e26
--- /dev/null
+++ b/.github/workflows/checks.yaml
@@ -0,0 +1,37 @@
+name: Check
+on: [pull_request]
+permissions:
+  contents: write
+jobs:
+  check:
+    runs-on: ubuntu-latest
+    steps:
+      - uses: actions/checkout@v4
+      - uses: actions/setup-python@v5
+        with:
+          python-version: '3.10'
+          cache: 'pip'
+      - uses: extractions/setup-just@v2
+      - run: just install
+      - run: |
+          git fetch origin
+          pre-commit run --from-ref origin/${{ github.event.pull_request.base.ref }} --to-ref ${{ github.event.pull_request.head.sha }}
+
+  test:
+    runs-on: ubuntu-latest
+    strategy:
+      fail-fast: false
+      matrix:
+        python-version: [ "3.10", "3.11" ]
+    steps:
+      - uses: actions/checkout@v4
+      - uses: actions/setup-python@v5
+        with:
+          python-version: ${{ matrix.python-version }}
+          cache: 'pip'
+      - uses: extractions/setup-just@v2
+      - run: just install
+      - run: just test-with-coverage
+      - uses: codecov/codecov-action@v4
+        with:
+          token: ${{ secrets.CODECOV_TOKEN }}
diff --git a/.github/workflows/deploy.yaml b/.github/workflows/deploy.yaml
new file mode 100644
index 0000000..a5fb123
--- /dev/null
+++ b/.github/workflows/deploy.yaml
@@ -0,0 +1,25 @@
+name: Deploy
+on:
+  push:
+    tags:
+      - "v*.*.*"
+  workflow_dispatch: {}
+jobs:
+  publish:
+    runs-on: ubuntu-latest
+    environment:
+      name: pypi
+      url: https://pypi.org/p/jilutil
+    permissions:
+      id-token: write
+    steps:
+      - uses: actions/checkout@v4
+      - uses: actions/setup-python@v5
+        with:
+          python-version: '3.10'
+          cache: 'pip'
+      - uses: extractions/setup-just@v2
+      - run: just build
+      - uses: pypa/gh-action-pypi-publish@release/v1
+        with:
+          skip-existing: true