Bump github/codeql-action from 3.25.11 to 3.26.0 #17

	# This is a basic workflow to help you get started with Actions

	name: CI

	# Controls when the action will run. Triggers the workflow on push or pull request
	# events but only for the master branch
	on:
	workflow_dispatch:
	push:
	branches: [ main ]
	pull_request:
	branches: [ main ]

	# A workflow run is made up of one or more jobs that can run sequentially or in parallel
	permissions: # added using https://github.com/step-security/secure-repo
	contents: read
	jobs:
	# This workflow contains a single job called "build"
	build:
	# The type of runner that the job will run on
	runs-on: ubuntu-latest

	# Steps represent a sequence of tasks that will be executed as part of the job
	steps:
	- name: Harden Runner
	uses: step-security/harden-runner@17d0e2bd7d51742c71671bd19fa12bdc9d40a3d6 # v2.8.1
	with:
	egress-policy: audit
	- uses: actions/checkout@692973e3d937129bcbf40652eb9f2f61becf3332 # v4.1.7
	- name: Set up Python
	uses: actions/setup-python@82c7e631bb3cdc910f68e0081d67478d79c6982d # v5.1.0
	with:
	python-version: '3.x'
	- name: Install poetry
	uses: abatilo/actions-poetry@v2
	- name: Run tests
	run: \|
	poetry install --with test
	poetry run coverage run --branch tests.py -b
	poetry run coverage xml
	- name: Save debug.log file
	uses: actions/upload-artifact@65462800fd760344b1a7b4382951275a0abb4808 # v4.3.3
	if: always()
	with:
	name: debug-log
	path: ./debug.log
	- name: SonarCloud Scan
	uses: SonarSource/sonarcloud-github-action@master
	env:
	GITHUB_TOKEN: ${{ secrets.GITHUB_TOKEN }} # Needed to get PR information, if any
	SONAR_TOKEN: ${{ secrets.SONAR_TOKEN }}

Provide feedback