ci: enable SAST scanning with CodeQL #1

	name: codeql

	on:
	push:
	branches:
	- 'main'
	pull_request:

	permissions:
	actions: read
	contents: read
	security-events: write

	jobs:
	analyze:
	runs-on: ubuntu-latest
	steps:
	-
	name: Checkout
	uses: actions/checkout@v4
	-
	name: Initialize CodeQL
	uses: github/codeql-action/init@v2
	with:
	languages: javascript-typescript
	-
	name: Autobuild
	uses: github/codeql-action/autobuild@v2
	-
	name: Perform CodeQL Analysis
	uses: github/codeql-action/analyze@v2
	with:
	category: "/language:javascript-typescript"

Provide feedback