chore(ci): switch to GH default CodeQL (#1431)

.github/workflows/analysis.yml

@@ -40,42 +40,6 @@ jobs:
             -Dsonar.exclusions=**/config/**,*/dto/**,**/entity/**,**/exception/**,**/filter/**,**/interceptor/**,**/response/**,**/**Builder*,**/RestExceptionEndpoint.*,**/BackendStartApiApplication.*
           sonar_token: ${{ secrets[matrix.token] }}
 
-  codeql:
-    name: Semantic Code Analysis
-    if: ${{ ! github.event.pull_request.draft }}
-    runs-on: ubuntu-22.04
-    permissions:
-      actions: read
-      contents: read
-      security-events: write
-    steps:
-      - uses: actions/checkout@v4
-
-      - name: Initialize
-        uses: github/codeql-action/init@v3
-        with:
-          debug: true
-          languages: java,javascript
-
-      - name: Set up JDK 17
-        uses: actions/setup-java@v4
-        with:
-          java-version: "17"
-          distribution: "temurin"
-
-        # Build Java apps, JavaScript doesn't require
-      - name: Backend Build
-        working-directory: backend
-        run: mvn --update-snapshots -P prod clean package -Dmaven.test.skip
-
-        # Build Java apps, JavaScript doesn't require
-      - name: Oracle API Build
-        working-directory: oracle-api
-        run: mvn --update-snapshots package -Dmaven.test.skip
-
-      - name: Perform CodeQL Analysis
-        uses: github/codeql-action/analyze@v3
-
   # https://github.com/marketplace/actions/aqua-security-trivy
   trivy:
     name: Security Scan

.github/workflows/job-nightly.yml

@@ -3,7 +3,6 @@ name: Nightly
 on:
   schedule: [cron: "0 11 * * 6"] # 3 AM PST = 12 PM UDT, Saturdays
   workflow_dispatch:
-  pull_request:
 
 concurrency:
   group: ${{ github.workflow }}-${{ github.ref }}