feat: Add API for single pull request scan (#370) #1208

	name: "CodeQL Analysis"
	on: [ push, pull_request ]

	permissions:
	contents: read

	jobs:
	analyze:
	permissions:
	actions: read # for github/codeql-action/init to get workflow details
	contents: read # for actions/checkout to fetch code
	security-events: write # for github/codeql-action/analyze to upload SARIF results
	name: Analyze
	runs-on: ubuntu-latest

	strategy:
	fail-fast: false
	matrix:
	language: [ 'java' ]

	steps:
	- name: Harden Runner
	uses: step-security/harden-runner@1b05615854632b887b69ae1be8cbefe72d3ae423
	with:
	egress-policy: audit

	- name: Checkout repository
	uses: actions/checkout@629c2de402a417ea7690ca6ce3f33229e27606a5 # v2

	# Initializes the CodeQL tools for scanning.
	- name: Initialize CodeQL
	uses: github/codeql-action/init@012739e5082ff0c22ca6d6ab32e07c36df03c4a4
	with:
	languages: ${{ matrix.language }}

	- name: Autobuild
	uses: github/codeql-action/autobuild@012739e5082ff0c22ca6d6ab32e07c36df03c4a4

	- name: Perform CodeQL Analysis
	uses: github/codeql-action/analyze@012739e5082ff0c22ca6d6ab32e07c36df03c4a4

Provide feedback