Remove executing build and test, there is a special workflow for this and CodeQL does not require running any go code or building the app
Remove `git checkout HEAD^2`, not needed anymore: Warning: 1 issue was detected with this workflow: git checkout HEAD^2 is no longer necessary. Please remove this step as Code Scanning recommends analyzing the merge commit for best results.
Add permission to write the security events
This commit is to add codeQL scanning, which is newly introduced feature
from github.
The scan will be run per PR, and periodically as well.
Signed-off-by: Tam Mach <sayboras@yahoo.com>
