Update security-scan.yml

Author: KazerL

.github/workflows/security-scan.yml

@@ -1,41 +1,28 @@
-# .github/workflows/security-scan.yml
+# .github/workflows/superlinter.yml
 
-name: Security Scan
+name: Super-Linter
 
 on:
   push:
     branches:
       - main
   pull_request:
-    branches:
-      - main
-  schedule:
-    - cron: '0 4 * * 0'   # weekly Sunday 04:00 UTC
 
 permissions:
-  contents: read        # allow reading repository contents
-  security-events: write  # allow uploading CodeQL alerts
+  contents: read
+  statuses: write
 
 jobs:
-  codeql:
-    name: Perform CodeQL Analysis
+  lint:
     runs-on: ubuntu-latest
 
-    strategy:
-      matrix:
-        language: [ 'javascript', 'python' ]  # scan these languages
-
     steps:
-      - name: Checkout repository
+      - name: Checkout code
         uses: actions/checkout@v4
 
-      - name: Initialize CodeQL
-        uses: github/codeql-action/init@v3
-        with:
-          languages: ${{ matrix.language }}
-
-      - name: Autobuild
-        uses: github/codeql-action/autobuild@v3
-
-      - name: Run CodeQL analysis
-        uses: github/codeql-action/analyze@v3
+      - name: Run Super-Linter (via Docker)
+        uses: docker://ghcr.io/github/super-linter/super-linter:slim-v6.4.1
+        env:
+          GITHUB_TOKEN: ${{ secrets.GITHUB_TOKEN }}
+          DEFAULT_BRANCH: main
+          DISABLE_LINTERS: "CHECKOV,JAVASCRIPT_STANDARD,MARKDOWN,PYTHON_BLACK,PYTHON_PYLINT"