From d07a6ea134b0b68247b26037eaf6c46c4a6ff30f Mon Sep 17 00:00:00 2001
From: Hilmar Falkenberg <hilmar.falkenberg@sap.com>
Date: Wed, 29 Jan 2025 13:40:36 +0100
Subject: [PATCH] reuse from central config repo: `.github`

Signed-off-by: Hilmar Falkenberg <hilmar.falkenberg@sap.com>
---
 .github/workflows/codeql.yml | 16 +++-------------
 1 file changed, 3 insertions(+), 13 deletions(-)

diff --git a/.github/workflows/codeql.yml b/.github/workflows/codeql.yml
index 643d4081b..da24bdef9 100644
--- a/.github/workflows/codeql.yml
+++ b/.github/workflows/codeql.yml
@@ -117,19 +117,9 @@ jobs:
         category: "/language:${{matrix.language}}"
 
   gosec:
-    name: Go Security Checker
-    runs-on: large_runner
     permissions:
       # Required to upload SARIF files
       security-events: write
-    steps:
-      - name: Checkout
-        uses: actions/checkout@v4
-      - name: Run Gosec Security Scanner
-        uses: securego/gosec@v2.22.0
-        with:
-          args: "-no-fail -fmt sarif -out results.sarif ./..."
-      - name: Upload SARIF file
-        uses: github/codeql-action/upload-sarif@v3
-        with:
-          sarif_file: results.sarif
+    # call reusable workflow from central '.github' repo
+    uses: open-component-model/.github/.github/workflows/code-scan.yml@main
+    secrets: inherit