build: restrict paths for which code scanning should be performed

.github/workflows/codeql.yml

@@ -31,6 +31,22 @@ on:
   # Allow the workflow to be manually run:
   workflow_dispatch:
 
+# Define paths for which code scanning should be performed:
+paths:
+  - 'lib/node_modules/**/bin/**'
+  - 'lib/node_modules/**/docs/types/**'
+  - 'lib/node_modules/**/include/**'
+  - 'lib/node_modules/**/lib/**'
+  - 'lib/node_modules/**/src/**'
+
+  - 'lib/node_modules/**/*.gyp'
+  - 'lib/node_modules/**/*.gypi'
+  - 'package.json'
+
+# Define paths for which code scanning should *not* be performed:
+paths-ignore:
+  - 'lib/node_modules/**/_tools/**'
+
 # Workflow jobs:
 jobs: