Only scan workflow changes #3

	name: "Workflow CodeQL Scan"

	on:
	push:
	branches: [main]
	paths: ['.github/workflows/**']
	pull_request:
	branches: [main]
	paths: ['.github/workflows/**']

	permissions:
	# Required for all workflows
	security-events: write

	jobs:
	workflow-scan:
	runs-on: ubuntu-latest

	steps:
	- name: Checkout repository
	uses: actions/checkout@v4
	with:
	persist-credentials: false

	- name: Perform CodeQL Analysis
	uses: rcowsill/workflow-scan-action@v1

Provide feedback