codeql: also check JavaScript code

Let's exclude GitWeb from being scanned; It is not distributed by us.

Signed-off-by: Johannes Schindelin <[email protected]>

Author: dscho

.github/codeql/codeql-config.yml

@@ -3,6 +3,9 @@ name: "CodeQL config"
 queries:
   - uses: security-extended
 
+paths-ignore:
+  - gitweb/**/*.js # GitWeb is not distributed
+
 query-filters:
   - exclude:
     # yes, this extra indentation is intentional

.github/workflows/codeql.yml

@@ -17,7 +17,7 @@ jobs:
     strategy:
       fail-fast: false
       matrix:
-        language: ["cpp"]
+        language: ["cpp", "javascript"]
 
     steps:
       - name: Checkout repository
@@ -55,10 +55,10 @@ jobs:
       - name: publish sarif for debugging
         uses: actions/upload-artifact@v4
         with:
-          name: sarif-results
+          name: sarif-results-${{ matrix.language }}
           path: sarif-results
 
       - name: Upload SARIF
         uses: github/codeql-action/upload-sarif@v3
         with:
-         sarif_file: sarif-results/cpp.sarif
+         sarif_file: sarif-results/${{ matrix.language }}.sarif