Bump sanitize-html from 1.4.2 to 2.12.1 #18

	name: "CodeQL Scan"

	on:
	push:
	pull_request:
	workflow_dispatch:


	jobs:
	analyze:
	name: Analyze
	runs-on: ubuntu-latest
	permissions:
	actions: read
	contents: read
	security-events: write
	strategy:
	fail-fast: false
	matrix:
	language: [ 'javascript' ]
	steps:
	- name: Checkout repository
	uses: actions/[email protected]

	- uses: actions/setup-dotnet@v3
	with:
	dotnet-version: \|
	5.0.x
	6.0.x

	- name: Initialize CodeQL
	uses: github/codeql-action/init@v2
	with:
	languages: ${{ matrix.language }}
	queries: security-extended

	- name: Autobuild
	uses: github/codeql-action/autobuild@v2

	- name: Perform CodeQL Analysis
	uses: github/codeql-action/analyze@v2

	- name: Run Microsoft Security DevOps Analysis
	uses: microsoft/[email protected]
	id: msdo

	- name: Upload alerts to Security tab
	uses: github/codeql-action/upload-sarif@v2
	with:
	sarif_file: ${{ steps.msdo.outputs.sarifFile }}

Provide feedback