Merge pull request #20 from shwetaverma14/fix-codeql-auth

fix: CodeQL authentication and test compilation

Author: shwetaverma14

.github/workflows/codeql-analysis.yml

@@ -1,49 +1,64 @@
 name: "CodeQL"
 
-permissions:
-  contents: read
-  actions: read
-  security-events: write
-
 on:
   push:
-    branches: ["main"]
+    branches: [ "main" ]
   pull_request:
-    branches: ["main"]
+    branches: [ "main" ]
   schedule:
-    - cron: "0 3 * * 1"
+    - cron: '0 3 * * 1'
 
 jobs:
   analyze:
     name: Analyze
     runs-on: ubuntu-latest
+    permissions:
+      actions: read
+      contents: read
+      security-events: write
 
     strategy:
       fail-fast: false
       matrix:
-        language: ["java"]
+        language: [ 'java' ]
 
     steps:
-      - name: Checkout repository
-        uses: actions/checkout@v3
+    - name: Checkout repository
+      uses: actions/checkout@v4
+      with:
+        token: ${{ secrets.GITHUB_TOKEN }}
+
+    - name: Set up JDK 17
+      uses: actions/setup-java@v4
+      with:
+        java-version: '17'
+        distribution: 'temurin'
+
+    - name: Install Groovy
+      run: sudo apt-get update && sudo apt-get install -y groovy
 
-      - name: Set up JDK 17
-        uses: actions/setup-java@v3
-        with:
-          java-version: "17"
-          distribution: "temurin"
-          cache: "maven"
+    - name: Clone and build apis-bom
+      run: |
+        git clone https://github.com/hyphae/apis-bom.git ../apis-bom
+        cd ../apis-bom
+        mvn -B clean install
 
-      - name: Install Groovy
-        run: sudo apt-get update && sudo apt-get install -y groovy
+    - name: Clone and build apis-common
+      run: |
+        git clone https://github.com/hyphae/apis-common.git ../apis-common
+        cd ../apis-common
+        BOM_VERSION=$(grep -oP '<version>\K[^<]+' ../apis-bom/pom.xml | head -1)
+        sed -i "s/<version>3.0.0<\\/version>/<version>$BOM_VERSION<\\/version>/" pom.xml
+        mvn -B clean install
 
-      - name: Initialize CodeQL
-        uses: github/codeql-action/init@v2
-        with:
-          languages: ${{ matrix.language }}
+    - name: Initialize CodeQL
+      uses: github/codeql-action/init@v3
+      with:
+        languages: ${{ matrix.language }}
 
-      - name: Autobuild
-        uses: github/codeql-action/autobuild@v2
+    - name: Build for CodeQL Analysis
+      run: |
+        mvn -B clean compile test-compile
 
-      - name: Perform CodeQL Analysis
-        uses: github/codeql-action/analyze@v2
+    - name: Perform CodeQL Analysis
+      uses: github/codeql-action/analyze@v3