name: "CodeQL Workflows Analysis" on: pull_request: branches: ["dev"] paths: - ".github/**/*.yml" schedule: - cron: "00 12 * * *" # Runs daily at 12:00 UTC workflow_dispatch: permissions: actions: write contents: read security-events: write jobs: analyze-workflows: name: Analyze GitHub Workflows runs-on: ubuntu-latest steps: - name: Checkout repository uses: actions/checkout@v5 with: show-progress: false - name: Setup CodeQL for GitHub Actions uses: github/codeql-action/init@v3 with: languages: actions build-mode: none - name: Run CodeQL Analysis uses: github/codeql-action/analyze@v3 with: category: "/language:multi-none"