Update permissions in codeql.yml workflow (#338) #2

	name: "CodeQL"

	on:
	push:
	branches: ["develop"]
	pull_request:
	branches: ["develop"]
	schedule:
	- cron: "0 0 * * 5"

	permissions:
	contents: "read"

	jobs:
	analyze:
	name: "Analyze"
	runs-on: "ubuntu-latest"
	permissions:
	actions: read
	contents: read
	security-events: write
	steps:
	- name: "Checkout repository"
	uses: "actions/checkout@1af3b93b6815bc44a9784bd300feb67ff0d1eeb3"

	- name: "Run CodeQL init"
	uses: "github/codeql-action/init@4e94bd11f71e507f7f87df81788dff88d1dacbfb"
	with:
	config-file: "./.github/codeql.yml"
	languages: "python"

	- name: "Run CodeQL autobuild"
	uses: "github/codeql-action/autobuild@4e94bd11f71e507f7f87df81788dff88d1dacbfb"

	- name: "Run CodeQL analyze"
	uses: "github/codeql-action/analyze@4e94bd11f71e507f7f87df81788dff88d1dacbfb"

Provide feedback