From 43aa42bfa3932cbfd1cc35e9fdf320abacb9afa1 Mon Sep 17 00:00:00 2001
From: Paul Gilber <gilber.paul.s@gmail.com>
Date: Sat, 28 Oct 2023 01:40:16 +0000
Subject: [PATCH] updated codeql workflow

---
 .github/workflows/code-scan-codeql.yml | 19 ++++++++++++++++++-
 1 file changed, 18 insertions(+), 1 deletion(-)

diff --git a/.github/workflows/code-scan-codeql.yml b/.github/workflows/code-scan-codeql.yml
index 4fe2374..08548d1 100644
--- a/.github/workflows/code-scan-codeql.yml
+++ b/.github/workflows/code-scan-codeql.yml
@@ -35,5 +35,22 @@ jobs:
       - name: Checkout repository
         uses: actions/checkout@v4    # https://github.com/marketplace/actions/checkout
 
+      # Initializes CodeQL scanning tools
+      # https://github.com/github/codeql-action
       - name: Initialize CodeQL
-        uses:     # https://github.com/github/codeql-action
+        uses: github/codeql-action/init@v2.22.5    # https://github.com/github/codeql-action
+
+      # Autobuild attempts to build any compiled languages  (C/C++, C#, or Java).
+      # If this step fails, then you should remove it and run the build manually (see below)
+      - name: Autobuild
+        uses: github/codeql-action/autobuild@v2.22.5
+
+      # Note: If the Autobuild fails above, remove it and uncomment the following three lines
+      #    and modify them (or add more) to build your code if your project
+      #    uses a compiled language
+
+      #- run: |
+      #   make bootstrap
+      #   make release
+      - name: Run CodeQL Analysis
+        uses: github/codeql-action/analyze@v2.22.5