From e2c7a71949860fec91163f44177c501a69de6cfa Mon Sep 17 00:00:00 2001
From: github-actions <github-actions@github.com>
Date: Fri, 7 Nov 2025 13:53:30 +0000
Subject: [PATCH] [Product Security] Adding CodeQL Workflow

---
 .github/workflows/codeql.yaml | 22 ++++++++++++++++++++++
 1 file changed, 22 insertions(+)
 create mode 100644 .github/workflows/codeql.yaml

diff --git a/.github/workflows/codeql.yaml b/.github/workflows/codeql.yaml
new file mode 100644
index 0000000..a54d49c
--- /dev/null
+++ b/.github/workflows/codeql.yaml
@@ -0,0 +1,22 @@
+name: "CodeQL public repository scanning"
+
+on:
+  push:
+    branches:
+      - main
+      - master
+  schedule:
+    - cron: "0 0 * * *"
+  pull_request_target:
+    types: [opened, synchronize, reopened]
+  workflow_dispatch:
+
+permissions:
+  contents: read
+  security-events: write
+  actions: read
+  packages: read
+
+jobs:
+  trigger-codeql:
+    uses: zendesk/prodsec-code-scanning/.github/workflows/codeql_advanced_shared.yml@production