ci: setup codeql

[G-Rath]

Description

CodeQL is free for open-source projects and now has beta support for Koltin so might as well run it 🤷

Checklist

• [x] I self reviewed the submitted code
• [x] I ran ./gradlew ktlintCheck detekt before submitting this PR
• [x] I ran the app on a device/emulator or added unit tests to verify this change

[github-advanced-security[bot]]

This pull request sets up GitHub code scanning for this repository. Once the scans have completed and the checks have passed, the analysis results for this pull request branch will appear on this overview. Once you merge this pull request, the 'Security' tab will show more code scanning analysis results (for example, for the default branch). Depending on your configuration and choice of analysis tool, future pull requests will be annotated with code scanning analysis results. For more information about GitHub code scanning, check out the documentation.

[tylerbwong]

@G-Rath Can we omit the JS scanning job? Also, it looks like we'll have to provide the specific build command.

[G-Rath]

@tylerbwong sure, though it was added automatically since there is technically JavaScript in the repository.

I'll have a crack at getting it working with the build script, but might end up needing your help since I've not really got a lot of experience with Java/Kotlin build tools 😅