CI: Improve CodeQL and add dependency submission.

Author: antoniovazquezblanco

.github/workflows/codeql.yml

@@ -21,7 +21,11 @@ jobs:
     strategy:
       fail-fast: false
       matrix:
-        language: [ 'java-kotlin' ]
+        include:
+        - language: actions
+          build-mode: none
+        - language: java-kotlin
+          build-mode: manual
 
     steps:
     - name: Checkout repository
@@ -31,22 +35,27 @@ jobs:
       uses: github/codeql-action/init@v4
       with:
         languages: ${{ matrix.language }}
+        build-mode: ${{ matrix.build-mode }}
 
     - name: Install Java
+      if: matrix.language == 'java-kotlin'
       uses: actions/setup-java@v5
       with:
         distribution: 'temurin'
         java-version: '21'
 
     - name: Install Gradle
+      if: matrix.language == 'java-kotlin'
       uses: gradle/actions/setup-gradle@v5
 
     - name: Install Ghidra
-      uses: antoniovazquezblanco/setup-ghidra@v2.0.16
+      if: matrix.language == 'java-kotlin'
+      uses: antoniovazquezblanco/setup-ghidra@v2.0.17
       with:
         auth_token: ${{ secrets.GITHUB_TOKEN }}
 
     - name: Build
+      if: matrix.language == 'java-kotlin'
       run: gradle buildExtension
 
     - name: Perform CodeQL Analysis

.github/workflows/dependency_submission.yml

@@ -0,0 +1,32 @@
+name: Dependency Submission
+
+on:
+  push:
+    branches: [ 'main' ]
+
+permissions:
+  contents: write
+
+jobs:
+  dependency-submission:
+    runs-on: ubuntu-latest
+    steps:
+    - name: Checkout sources
+      uses: actions/checkout@v4
+
+    - name: Setup Java
+      uses: actions/setup-java@v4
+      with:
+        distribution: 'temurin'
+        java-version: 21
+
+    - name: Setup Gradle
+      uses: gradle/actions/setup-gradle@v5
+
+    - name: Setup Ghidra
+      uses: antoniovazquezblanco/setup-ghidra@v2.0.17
+      with:
+        auth_token: ${{ secrets.GITHUB_TOKEN }}
+
+    - name: Generate and submit dependency graph
+      uses: gradle/actions/dependency-submission@v5