From 9ebd1ddc7ce422936347fadc529649c6e7cdbe4c Mon Sep 17 00:00:00 2001
From: Deepak Pandey <deepak@codeunia.dev>
Date: Sat, 6 Sep 2025 11:02:59 +0530
Subject: [PATCH] FIX: Update CodeQL to v3, Node.js to v20, and add security
 permissions

- Updated CodeQL actions from v2 to v3 to fix deprecation warnings
- Updated Node.js version from 18 to 20 to fix engine compatibility warnings
- Added security-events:write permission for CodeQL to upload results
- Added contents:read and actions:read permissions for proper workflow execution
---
 .github/workflows/ci-cd.yml | 11 ++++++++---
 1 file changed, 8 insertions(+), 3 deletions(-)

diff --git a/.github/workflows/ci-cd.yml b/.github/workflows/ci-cd.yml
index a83887b4..f8f3290f 100644
--- a/.github/workflows/ci-cd.yml
+++ b/.github/workflows/ci-cd.yml
@@ -6,8 +6,13 @@ on:
   pull_request:
     branches: [ main, develop ]
 
+permissions:
+  contents: read
+  security-events: write
+  actions: read
+
 env:
-  NODE_VERSION: '18'
+  NODE_VERSION: '20'
   PUPPETEER_SKIP_CHROMIUM_DOWNLOAD: true
 
 jobs:
@@ -135,12 +140,12 @@ jobs:
 
       # CodeQL Analysis
       - name: Initialize CodeQL
-        uses: github/codeql-action/init@v2
+        uses: github/codeql-action/init@v3
         with:
           languages: javascript
 
       - name: Perform CodeQL Analysis
-        uses: github/codeql-action/analyze@v2
+        uses: github/codeql-action/analyze@v3
 
       # Custom Security Tests
       - name: Run security tests