[Product Security] Add CodeQL scanning workflow configuration

This change adds CodeQL workflow to your repository.
Created by the Product Security team at Zendesk as part of our Code Scanning programme

You can learn more about CodeQL and how we use it in this article

If you have any questions or need further assistance, please don't hesitate to reach out via Slack #ask-code-scanning

Author: AndreyZendesk

.github/workflows/codeql.yml

@@ -0,0 +1,19 @@
+name: "CodeQL public repository scanning"
+
+on:
+  push:
+  schedule:
+    - cron: "0 0 * * *"
+  pull_request_target:
+    types: [opened, synchronize, reopened]
+  workflow_dispatch:
+
+permissions:
+  contents: read
+  security-events: write
+  actions: read
+  packages: read
+
+jobs:
+  trigger-codeql:
+    uses: zendesk/prodsec-code-scanning/.github/workflows/codeql_advanced_shared.yml@production