Bump the cxf group with 2 updates #206

	name: "CodeQL"

	on:
	push:
	branches:
	- "master"
	pull_request:
	branches:
	- "master"
	workflow_dispatch:

	permissions: {}

	jobs:
	analyze:
	name: Analyze (${{ matrix.language }})
	runs-on: ubuntu-latest

	permissions:
	security-events: write

	strategy:
	fail-fast: false
	matrix:
	include:
	- language: actions
	build-mode: none
	- language: java-kotlin
	build-mode: autobuild

	steps:
	- name: Checkout repository
	uses: actions/checkout@08c6903cd8c0fde910a37f88322edcfb5dd907a8 # v5.0.0

	- name: Set up JDK 25
	if: matrix.language == 'java-kotlin'
	uses: actions/setup-java@dded0888837ed1f317902acf8a20df0ad188d165 # v5.0.0
	with:
	java-version: "25"
	distribution: "temurin"
	cache: "maven"
	check-latest: true

	- name: Initialize CodeQL
	uses: github/codeql-action/init@014f16e7ab1402f30e7c3329d33797e7948572db # v4.31.3
	with:
	languages: ${{ matrix.language }}
	build-mode: ${{ matrix.build-mode }}
	queries: security-and-quality

	- name: Autobuild
	uses: github/codeql-action/autobuild@014f16e7ab1402f30e7c3329d33797e7948572db # v4.31.3

	- name: Perform CodeQL Analysis
	uses: github/codeql-action/analyze@014f16e7ab1402f30e7c3329d33797e7948572db # v4.31.3
	with:
	category: "/language:${{matrix.language}}"

Provide feedback