From 225a83f9e46267cd1a256acc1a57cd110d5742d9 Mon Sep 17 00:00:00 2001
From: Andrey Gubarevich <andrey.gubarevich@zendesk.com>
Date: Fri, 31 Oct 2025 15:59:00 +0100
Subject: [PATCH] [Product Security] Add CodeQL scanning workflow configuration

This change adds CodeQL workflow to your repository.
Created by the Product Security team at Zendesk as part of our Code Scanning programme

You can learn more about CodeQL and how we use it in this article

If you have any questions or need further assistance, please don't hesitate to reach out via Slack #ask-code-scanning
---
 .github/workflows/codeql.yml | 19 +++++++++++++++++++
 1 file changed, 19 insertions(+)
 create mode 100644 .github/workflows/codeql.yml

diff --git a/.github/workflows/codeql.yml b/.github/workflows/codeql.yml
new file mode 100644
index 0000000..286b1ab
--- /dev/null
+++ b/.github/workflows/codeql.yml
@@ -0,0 +1,19 @@
+name: "CodeQL public repository scanning"
+
+on:
+  push:
+  schedule:
+    - cron: "0 0 * * *"
+  pull_request_target:
+    types: [opened, synchronize, reopened]
+  workflow_dispatch:
+
+permissions:
+  contents: read
+  security-events: write
+  actions: read
+  packages: read
+
+jobs:
+  trigger-codeql:
+    uses: zendesk/prodsec-code-scanning/.github/workflows/codeql_advanced_shared.yml@production