Latest build conventions #262

	name: CodeQL

	on:
	push:
	branches: [ main ]
	pull_request:
	branches: [ main ]

	permissions:
	contents: read

	jobs:
	analyze:
	if: ${{ github.run_number != 1 }}
	runs-on: ubuntu-latest
	permissions:
	actions: read
	contents: read
	security-events: write

	strategy:
	fail-fast: false
	matrix:
	language: [ 'java' ]

	steps:
	- name: Checkout repository
	uses: actions/checkout@c85c95e3d7251135ab7dc9ce3241c5835cc595a9 # v3.5.3

	- name: Initialize CodeQL
	uses: github/codeql-action/init@cdcdbb579706841c47f7063dda365e292e5cad7a # v2.13.4
	with:
	languages: ${{ matrix.language }}

	- name: Set up JDK
	uses: actions/setup-java@cd89f46ac9d01407894225f350157564c9c7cee2 # v3.12.0
	with:
	java-version: '17'
	distribution: 'adopt'

	- name: Setup Gradle
	uses: gradle/gradle-build-action@a4cf152f482c7ca97ef56ead29bf08bcd953284c # v2.7.0
	with:
	gradle-home-cache-cleanup: true

	- name: Build
	run: ./gradlew test

	- name: Perform CodeQL Analysis
	uses: github/codeql-action/analyze@cdcdbb579706841c47f7063dda365e292e5cad7a # v2.13.4

Provide feedback