Update security workflows #12085

	name: "CodeQL"

	on:
	push:
	branches:
	- main
	- release-*
	pull_request:
	branches:
	- main
	- release-*
	schedule:
	- cron: "39 13 * * 6" # run every Saturday at 13:39 UTC

	concurrency:
	group: ${{ github.ref_name }}-codeql
	cancel-in-progress: true

	permissions:
	contents: read

	jobs:
	codeql:
Check failure on line 23 in .github/workflows/codeql-analysis.yml View workflow run for this annotation GitHub Actions / CodeQL Invalid workflow file `The workflow is not valid. .github/workflows/codeql-analysis.yml (Line: 23, Col: 3): Error calling workflow 'nginxinc/compliance-rules/.github/workflows/[email protected]'. The nested job 'analyze' is requesting 'actions: read, packages: read, security-events: write', but is only allowed 'actions: none, packages: none, security-events: none'.`
	uses: nginxinc/compliance-rules/.github/workflows/[email protected]
	with:
	requested_languages: go,javascript-typescript

Provide feedback