CodeQL GitHub Action Improvements (#2533)

- Rename action to "codeql" (default name)
- Widen the issues to scan for with the security-and-quality mode (https://docs.github.com/en/code-security/code-scanning/creating-an-advanced-setup-for-code-scanning/customizing-your-advanced-setup-for-code-scanning#using-queries-in-ql-packs)
- Scan on every PR
- Scan on TypeScript as well as JavaScript

.github/workflows/security-scan.yaml → .github/workflows/codeql.yaml

@@ -1,8 +1,10 @@
 name: Security Scan
 
 on:
-  schedule:
-    - cron: '0 6 * * *'
+  push:
+    branches: [main]
+  pull_request:
+    branches: [main]
   workflow_dispatch:
 
 permissions:
@@ -20,7 +22,7 @@ jobs:
     strategy:
       fail-fast: false
       matrix:
-        language: ['javascript']
+        language: ['javascript-typescript']
 
     steps:
       - name: Checkout repository
@@ -30,6 +32,7 @@ jobs:
         uses: github/codeql-action/init@v3
         with:
           languages: ${{ matrix.language }}
+          queries: +security-and-quality
 
       - name: Perform CodeQL Analysis
         uses: github/codeql-action/analyze@v3