CodeQL #539

	name: "CodeQL"

	on:
	push:
	branches: [master]
	pull_request:
	# The branches below must be a subset of the branches above
	branches: [master]
	schedule:
	- cron: '0 0 * * 4'

	jobs:
	analyze:
	name: Analyze
	runs-on: ubuntu-latest
	strategy:
	fail-fast: false
	matrix:
	language: ['java']
	# https://docs.github.com/en/github/finding-security-vulnerabilities-and-errors-in-your-code/configuring-code-scanning#overriding-automatic-language-detection

	permissions:
	security-events: write
	steps:
	- name: Checkout repository
	uses: actions/checkout@v3
	with:
	fetch-depth: 2
	- name: Initialize CodeQL
	uses: github/codeql-action/init@v2
	with:
	languages: ${{ matrix.language }}
	- name: Set up JDK 17
	uses: actions/setup-java@v3
	with:
	java-version: 17
	distribution: 'temurin'
	cache: 'maven'
	- run: mvn -B clean package -Dgpg.skip=true -DskipTests -Dmaven.test.skip.exec -Dlicense.skip=true -Dmaven.javadoc.skip=true -Dmaven.source.skip=true
	- name: Perform CodeQL Analysis
	uses: github/codeql-action/analyze@v2

Provide feedback