CodeQL #519

	name: CodeQL
	on:
	schedule:
	- cron: '0 17 * * *'

	permissions:
	contents: read

	jobs:
	codeQL:
	if: ${{ github.repository_owner == 'ihub-pub' }}
	name: Analyze
	runs-on: ubuntu-latest
	permissions:
	actions: read
	contents: read
	security-events: write
	steps:
	- name: Harden Runner
	uses: step-security/harden-runner@91182cccc01eb5e619899d80e4e971d6181294a7 # v2.10.1
	with:
	disable-sudo: true
	egress-policy: audit

	- name: Checkout repository
	uses: actions/checkout@eef61447b9ff4aafe5dcd4e0bbf5d482be7e7871 # v4.2.1

	- name: Set up JDK 17
	uses: actions/setup-java@b36c23c0d998641eff861008f374ee103c25ac73 # v4.4.0
	with:
	java-version: '17'
	distribution: 'adopt'

	- name: Initialize CodeQL
	uses: github/codeql-action/init@c36620d31ac7c881962c3d9dd939c40ec9434f2b # v3.26.12

	- name: Autobuild
	uses: github/codeql-action/autobuild@c36620d31ac7c881962c3d9dd939c40ec9434f2b # v3.26.12

	- name: Perform CodeQL Analysis
	uses: github/codeql-action/analyze@c36620d31ac7c881962c3d9dd939c40ec9434f2b # v3.26.12

Provide feedback