Adjust permissions for CodeQL #25

	# Reusable Workflows see: https://github.com/entur/gha-security/blob/main/README-code-scan.md

	name: CodeQL Scan

	on:
	pull_request:
	branches:
	- "main"
	push:
	branches:
	- "main"
	schedule:
	- cron: "0 4 * * TUE" # Run Monday at 3AM UTC

	jobs:
	code-scan-pull-request:
	if: github.event_name == 'pull_request'
	name: CodeQL Scan
	uses: skjolber/gha-security/.github/workflows/code-scan-pull-request.yml@adjustPermissions
	permissions:
	contents: read
	security-events: write
	actions: read
	pull-requests: write
	issues: write
	with:
	java_distribution: "temurin"

Provide feedback