Add CodeQL analysis workflow for GitHub Actions #186

	name: dependency-review
	on:
	pull_request:
	branches:
	- main
	jobs:
	dependency-review:
	runs-on: ubuntu-latest
	permissions:
	pull-requests: write
	steps:
	- name: Checkout repository
	uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 # v4.2.2
	- name: Dependency review
	uses: actions/dependency-review-action@3b139cfc5fae8b618d3eae3675e383bb1769c019 # v4.5.0
	with:
	comment-summary-in-pr: true
	fail-on-severity: low
	vulnerability-check: true

Provide feedback