From 8f5a2cd52cab5e25d88c82c13a408394081e6c06 Mon Sep 17 00:00:00 2001
From: vldmrdev <70532790+vldmrdev@users.noreply.github.com>
Date: Tue, 14 Oct 2025 12:43:03 +0500
Subject: [PATCH] ci: add CodeQL

---
 .github/workflows/codeql.yml | 28 ++++++++++++++++++++++++++++
 .gitignore                   |  1 +
 README.md                    |  1 +
 3 files changed, 30 insertions(+)
 create mode 100644 .github/workflows/codeql.yml

diff --git a/.github/workflows/codeql.yml b/.github/workflows/codeql.yml
new file mode 100644
index 0000000..82077d2
--- /dev/null
+++ b/.github/workflows/codeql.yml
@@ -0,0 +1,28 @@
+name: CodeQL
+
+on:
+  pull_request:
+    branches: [ master ]
+
+jobs:
+  analyze:
+    name: Analyze
+    runs-on: ubuntu-latest
+    permissions:
+      security-events: write
+      actions: read
+      contents: read
+
+    steps:
+      - name: Checkout
+        uses: actions/checkout@08c6903cd8c0fde910a37f88322edcfb5dd907a8
+        with:
+          persist-credentials: false
+
+      - name: Initialize CodeQL
+        uses: github/codeql-action/init@0499de31b99561a6d14a36a5f662c2a54f91beee
+        with:
+          languages: python
+
+      - name: Perform CodeQL Analysis
+        uses: github/codeql-action/analyze@0499de31b99561a6d14a36a5f662c2a54f91beee
diff --git a/.gitignore b/.gitignore
index 0c2697a..9a9bce5 100644
--- a/.gitignore
+++ b/.gitignore
@@ -1,2 +1,3 @@
 .env
 **/__pycache__
+.idea/
\ No newline at end of file
diff --git a/README.md b/README.md
index c864c63..498adf5 100644
--- a/README.md
+++ b/README.md
@@ -3,6 +3,7 @@
 ![GitHub Actions](https://img.shields.io/badge/GitHub_Actions-success?style=flat&logo=githubactions)
 ![Python](https://img.shields.io/badge/Python-3.10%2B-blue?style=flat&logo=python)
 ![Telegram](https://img.shields.io/badge/Telegram-Bot-blue?style=flat&logo=telegram)
+[![CodeQL](https://github.com/reagento/relator/actions/workflows/codeql.yml/badge.svg)](https://github.com/reagento/relator/actions/workflows/codeql.yml)
 
 **Relator** (Latin _referre_ - "to report") - delivers beautifully formatted GitHub notifications to Telegram. Get instant alerts for issues and PRs with smart labeling and clean formatting, keeping your team informed in real-time.