Create codeql.yml

[BenWestgate]

Had to create a codeql.yml because codeql thought .local was a python venv and ignored my code.

[github-actions[bot]]

Dependency Review

✅ No vulnerabilities or license issues or OpenSSF Scorecard issues found.

OpenSSF Scorecard

Package	Version	Score	Details
actions/actions/checkout	4.*.*	:green_circle: 7.6	Details Check Score Reason Code-Review :green_circle: 10 all changesets reviewed Maintained :green_circle: 10 21 commit(s) and 1 issue activity found in the last 90 days -- score normalized to 10 CII-Best-Practices :warning: 0 no effort to earn an OpenSSF best practices badge detected License :green_circle: 10 license file detected Dangerous-Workflow :green_circle: 10 no dangerous workflow patterns detected Binary-Artifacts :green_circle: 10 no binaries found in the repo Token-Permissions :warning: 0 detected GitHub workflow tokens with excessive permissions Branch-Protection :warning: -1 internal error: error during branchesHandler.setup: internal error: githubv4.Query: Resource not accessible by integration Fuzzing :warning: 0 project is not fuzzed Signed-Releases :warning: -1 no releases found Security-Policy :green_circle: 9 security policy file detected Packaging :green_circle: 10 packaging workflow detected SAST :green_circle: 10 SAST tool is run on all commits Vulnerabilities :green_circle: 10 0 existing vulnerabilities detected Pinned-Dependencies :green_circle: 4 dependency not pinned by hash detected -- score normalized to 4
actions/github/codeql-action/analyze	3.*.*	Unknown	Unknown
actions/github/codeql-action/init	3.*.*	Unknown	Unknown

Scanned Manifest Files

.github/workflows/codeql.yml

• actions/checkout@4.*.*
• github/codeql-action/analyze@3.*.*
• github/codeql-action/init@3.*.*