From 2d4c8ec8fbb6d8eef79aa8348cdcaa2797ebdb46 Mon Sep 17 00:00:00 2001
From: Trask Stalnaker <trask.stalnaker@gmail.com>
Date: Tue, 4 Feb 2025 09:42:36 -0800
Subject: [PATCH] CodeQL on PRs

---
 .../{codeql-daily.yml => codeql.yml}          | 27 ++++++++++---------
 1 file changed, 15 insertions(+), 12 deletions(-)
 rename .github/workflows/{codeql-daily.yml => codeql.yml} (84%)

diff --git a/.github/workflows/codeql-daily.yml b/.github/workflows/codeql.yml
similarity index 84%
rename from .github/workflows/codeql-daily.yml
rename to .github/workflows/codeql.yml
index bf6027c55fac..179597163ee8 100644
--- a/.github/workflows/codeql-daily.yml
+++ b/.github/workflows/codeql.yml
@@ -1,10 +1,24 @@
 name: CodeQL
 
 on:
+  pull_request:
+    branches:
+      - main
+      - release/*
+      - v0.*
+      - v1.*
+      - cloudfoundry
+      - gh-pages
   push:
     branches:
       - main
-  workflow_dispatch:
+      - release/*
+      - v0.*
+      - v1.*
+      - cloudfoundry
+      - gh-pages
+  schedule:
+    - cron: "29 13 * * 2"  # weekly at 13:29 UTC on Tuesday
 
 permissions:
   contents: read
@@ -46,14 +60,3 @@ jobs:
 
       - name: Perform CodeQL analysis
         uses: github/codeql-action/analyze@dd746615b3b9d728a6a37ca2045b68ca76d4841a # v3.28.8
-
-  workflow-notification:
-    permissions:
-      contents: read
-      issues: write
-    needs:
-      - analyze
-    if: always()
-    uses: ./.github/workflows/reusable-workflow-notification.yml
-    with:
-      success: ${{ needs.analyze.result == 'success' }}