codeql #269

	name: "codeql"

	on:
	schedule:
	- cron: '0 4 * * 1'
	workflow_dispatch:

	defaults:
	run:
	shell: bash

	permissions:
	contents: read
	security-events: write

	jobs:
	analyze:
	name: Analyze
	runs-on: ubuntu-latest

	strategy:
	fail-fast: false
	matrix:
	language: [ 'javascript', 'typescript' ]

	steps:
	- name: Checkout repository
	uses: actions/checkout@1af3b93b6815bc44a9784bd300feb67ff0d1eeb3

	- name: Initialize CodeQL
	uses: github/codeql-action/init@0499de31b99561a6d14a36a5f662c2a54f91beee
	with:
	languages: ${{ matrix.language }}
	queries: security-extended

	- name: setup node
	uses: actions/setup-node@2028fbc5c25fe9cf00d9f06a71cc4710d4507903
	with:
	node-version: 24
	cache: 'npm'

	- run: npm ci --ignore-scripts
	- run: npm run build --workspaces --if-present

	- name: Perform CodeQL Analysis
	uses: github/codeql-action/analyze@0499de31b99561a6d14a36a5f662c2a54f91beee

Provide feedback