fix(ci): mark GitHub releases as latest from prerelease #2734

	name: CodeQL

	on:
	push:
	branches: [ "main" ]
	pull_request:
	branches: [ "main" ]

	env:
	CODEQL_EXTRACTOR_GO_BUILD_TRACING: true

	jobs:
	analyze:
	runs-on: ubuntu-latest

	permissions:
	contents: read

	steps:
	- uses: step-security/harden-runner@5c7944e73c4c2a096b17a9cb74d65b6c2bbafbde # v2.9.1
	with:
	egress-policy: audit

	- uses: actions/checkout@692973e3d937129bcbf40652eb9f2f61becf3332 # v4.1.7

	- uses: actions/setup-go@0a12ed9d6a96ab950c8f026ed9f722fe0da7ef32 # v3.0.0
	with:
	go-version-file: 'go.mod'
	check-latest: true

	- name: Initialize CodeQL
	uses: github/codeql-action/init@429e1977040da7a23b6822b13c129cd1ba93dbb2
	with:
	languages: go

	- name: build
	run: make apko

	- name: Perform CodeQL Analysis
	uses: github/codeql-action/analyze@429e1977040da7a23b6822b13c129cd1ba93dbb2

Provide feedback