ci: add CodeQL workflow for GitHub code scanning (#72)

Co-authored-by: LGTM Migrator <[email protected]>

Author: JounQin

.editorconfig

@@ -1,10 +1,10 @@
-root = true
+root=true
 
 [*]
-indent_style = space
-indent_size = 2
-tab_width = 2
-end_of_line = lf
-charset = utf-8
-trim_trailing_whitespace = true
-insert_final_newline = true
+indent_style=space
+indent_size=2
+tab_width=2
+end_of_line=lf
+charset=utf-8
+trim_trailing_whitespace=true
+insert_final_newline=true

.github/workflows/codeql.yml

@@ -0,0 +1,44 @@
+name: CodeQL
+
+on:
+  push:
+    branches:
+      - main
+  pull_request:
+    branches:
+      - main
+  schedule:
+    - cron: '23 2 * * 2'
+
+jobs:
+  analyze:
+    name: Analyze
+    runs-on: ubuntu-latest
+    permissions:
+      actions: read
+      contents: read
+      security-events: write
+
+    strategy:
+      fail-fast: false
+      matrix:
+        language:
+          - javascript
+
+    steps:
+      - name: Checkout
+        uses: actions/checkout@v4
+
+      - name: Initialize CodeQL
+        uses: github/codeql-action/init@v2
+        with:
+          languages: ${{ matrix.language }}
+          queries: +security-and-quality
+
+      - name: Autobuild
+        uses: github/codeql-action/autobuild@v2
+
+      - name: Perform CodeQL Analysis
+        uses: github/codeql-action/analyze@v2
+        with:
+          category: '/language:${{ matrix.language }}'

.gitignore

@@ -1,3 +1,5 @@
+.yarn/*
+!.yarn/plugins
 *.tsbuildinfo
 .*cache
 node_modules

.prettierignore

@@ -1 +1,2 @@
 CHANGELOG.md
+.yarn

.yarn/install-state.gz

@@ -5,4 +5,4 @@ nodeLinker: node-modules
 plugins:
   - checksum: 37b2361b1502b2054e6779788c0e9bdd6a90ce49852a8cad2feda79b0614ec94f06fb6e78951f5f95429c610d7934dd077caa47413a0227378a102c55161616d
     path: .yarn/plugins/plugin-prepare-lifecycle.cjs
-    spec: "https://github.com/un-es/yarn-plugin-prepare-lifecycle/releases/download/v0.0.1/index.js"
+    spec: 'https://github.com/un-es/yarn-plugin-prepare-lifecycle/releases/download/v0.0.1/index.js'

.yarnrc.yml

@@ -34,6 +34,7 @@
     "clean-pkg-json": "^1.2.0",
     "eslint": "^8.57.1",
     "lint-staged": "^15.4.3",
+    "prettier": "^3.5.3",
     "simple-git-hooks": "^2.11.1",
     "typescript": "^5.8.2"
   },

package.json

@@ -3865,6 +3865,7 @@ __metadata:
     clean-pkg-json: "npm:^1.2.0"
     eslint: "npm:^8.57.1"
     lint-staged: "npm:^15.4.3"
+    prettier: "npm:^3.5.3"
     simple-git-hooks: "npm:^2.11.1"
     typescript: "npm:^5.8.2"
   peerDependencies:
@@ -10643,7 +10644,7 @@ __metadata:
   languageName: node
   linkType: hard
 
-"prettier@npm:>=3.0.0-alpha.3, prettier@npm:^3.1.1":
+"prettier@npm:>=3.0.0-alpha.3, prettier@npm:^3.1.1, prettier@npm:^3.5.3":
   version: 3.5.3
   resolution: "prettier@npm:3.5.3"
   bin: