From 737df307ccd220ebc4341c005c5cd732398b9188 Mon Sep 17 00:00:00 2001
From: Tobias Stadler <28538704+devtobi@users.noreply.github.com>
Date: Thu, 19 Sep 2024 11:19:08 +0200
Subject: [PATCH] Update codeql.yaml

---
 .github/workflows/codeql.yaml | 42 +++++++++--------------------------
 1 file changed, 11 insertions(+), 31 deletions(-)

diff --git a/.github/workflows/codeql.yaml b/.github/workflows/codeql.yaml
index a624221a..8742717e 100644
--- a/.github/workflows/codeql.yaml
+++ b/.github/workflows/codeql.yaml
@@ -1,35 +1,15 @@
+# Workflow for advanced CodeQL setup used for scanning Java/JavaScript/TypeScript/Vue/Python based source files
 name: "CodeQL Advanced"
 
-on: [pull_request]
-
-concurrency:
-  group: ${{ github.workflow }}-${{ github.ref }}
-  cancel-in-progress: true
+on:
+  # Runs on pull requests and on pushes to main (in order to keep the regular scanning by GitHub working)
+  pull_request:
+  push:
+    branches: [main]
 
 jobs:
-  analyze:
-    name: Analyze (${{ matrix.language }})
-    runs-on: ubuntu-latest
-    permissions:
-      security-events: write
-    strategy:
-      fail-fast: false
-      matrix:
-        include:
-          - language: java-kotlin
-            build-mode: none
-          - language: javascript-typescript
-            build-mode: none
-    steps:
-      - name: Checkout repository
-        uses: actions/checkout@692973e3d937129bcbf40652eb9f2f61becf3332 # v4.1.7
-      - name: Initialize CodeQL
-        uses: github/codeql-action/init@v3
-        with:
-          languages: ${{ matrix.language }}
-          build-mode: ${{ matrix.build-mode }}
-          queries: +security-and-quality
-      - name: Perform CodeQL Analysis
-        uses: github/codeql-action/analyze@v3
-        with:
-          category: "/language:${{matrix.language}}"
+  codeql:
+    uses: it-at-m/.github/.github/workflows/codeql.yml@main
+    with:
+      analyze-java: true
+      analyze-javascript-typescript-vue: true