CodeQL Analysis #40

	name: CodeQL Analysis

	on:
	workflow_dispatch:
	schedule:
	- cron: '30 5 * * *'

	jobs:
	analyze-kotlin:
	name: Analyze Kotlin
	runs-on: ubuntu-latest
	timeout-minutes: 30
	permissions:
	actions: read
	contents: read
	security-events: write
	steps:
	- name: Checkout repository
	uses: actions/checkout@v4

	- name: Initialize CodeQL
	uses: github/codeql-action/init@v3
	with:
	languages: java-kotlin
	queries: security-and-quality

	- name: Setup Java
	uses: actions/setup-java@v4
	with:
	distribution: temurin
	java-version: 21

	- name: Setup Gradle
	uses: gradle/actions/setup-gradle@v4

	- name: Assemble
	run: ./gradlew clean assemble --parallel --no-daemon --no-build-cache

	- name: Perform CodeQL Analysis
	uses: github/codeql-action/analyze@v3
	with:
	upload: false
	output: sarif-results

	- name: Filter SARIF
	uses: advanced-security/filter-sarif@v1
	with:
	patterns: \|
	-*/test*.kt
	input: sarif-results/java.sarif
	output: sarif-results/java.sarif

	- name: Upload SARIF
	uses: github/codeql-action/upload-sarif@v3
	with:
	sarif_file: sarif-results/java.sarif
	category: "/language:java"

Provide feedback