Merge pull request #3589 from DSpace/backport-3587-to-dspace-8_x #4014

	# DSpace CodeQL code scanning configuration for GitHub
	# https://docs.github.com/en/code-security/code-scanning
	#
	# NOTE: Code scanning must be run separate from our default build.yml
	# because CodeQL requires a fresh build with all tests disabled.
	name: "Code Scanning"

	# Run this code scan for all pushes / PRs to main or maintenance branches. Also run once a week.
	on:
	push:
	branches:
	- main
	- 'dspace-**'
	pull_request:
	branches:
	- main
	- 'dspace-**'
	# Don't run if PR is only updating static documentation
	paths-ignore:
	- '*/.md'
	- '*/.txt'
	schedule:
	- cron: "37 0 * * 1"

	jobs:
	analyze:
	name: Analyze Code
	runs-on: ubuntu-latest
	# Limit permissions of this GitHub action. Can only write to security-events
	permissions:
	actions: read
	contents: read
	security-events: write

	steps:
	# https://github.com/actions/checkout
	- name: Checkout repository
	uses: actions/checkout@v4

	# Initializes the CodeQL tools for scanning.
	# https://github.com/github/codeql-action
	- name: Initialize CodeQL
	uses: github/codeql-action/init@v2
	with:
	languages: javascript

	# Autobuild attempts to build any compiled languages
	- name: Autobuild
	uses: github/codeql-action/autobuild@v2

	# Perform GitHub Code Scanning.
	- name: Perform CodeQL Analysis
	uses: github/codeql-action/analyze@v2

Provide feedback