TOFIX: codeql

Signed-off-by: Evan Lezar <[email protected]>

.github/workflows/code_scanning.yaml

@@ -20,9 +20,23 @@ on:
       golang_version:
         required: true
         type: string
+  pull_request:
+    types:
+      - opened
+      - synchronize
+    branches:
+      - main
+      - release-*
+
 
 jobs:
+  # TODO: Is there a way that we can only invoke this if this is a PR?
+  variables:
+    uses: ./.github/workflows/variables.yaml
+
   analyze:
+    needs:
+    - variables
     name: Analyze Go code with CodeQL
     runs-on: ubuntu-latest
     timeout-minutes: 360
@@ -32,18 +46,22 @@ jobs:
     steps:
     - name: Checkout repository
       uses: actions/checkout@v4
+
     - name: Install Go
       uses: actions/setup-go@v5
       with:
-        go-version: ${{ inputs.golang_version }}
+        go-version: ${{ needs.variables.outputs.golang_version }}
+
     - name: Initialize CodeQL
       uses: github/codeql-action/init@v3
       with:
         languages: go
         build-mode: manual
+
     - shell: bash
       run: |
         make build
+
     - name: Perform CodeQL Analysis
       uses: github/codeql-action/analyze@v3
       with: