feat(design-system): table scrollbar adjustment [AR-54032] #1776

	name: Security

	on:
	pull_request:
	branches: ['main', 'next']

	schedule:
	- cron: '0 0 * * 6'

	permissions: {}

	concurrency:
	group: '${{ github.workflow }} @ ${{ github.ref }}'
	cancel-in-progress: true

	jobs:
	CodeQL:
	name: CodeQL (${{ matrix.label }})
	runs-on: ubuntu-latest
	permissions:
	contents: read
	actions: read

	# required for all workflows
	security-events: write

	# required to fetch internal or private CodeQL packs
	packages: read

	strategy:
	fail-fast: false
	matrix:
	include:
	- label: 'GitHub Actions'
	language: actions

	- label: 'TypeScript'
	language: javascript-typescript

	steps:
	- name: Checkout repository
	uses: actions/checkout@de0fac2e4500dabe0009e67214ff5f5447ce83dd # v6.0.2
	with:
	persist-credentials: false

	- name: Initialize CodeQL
	uses: github/codeql-action/init@68bde559dea0fdcac2102bfdf6230c5f70eb485e # v4.35.4
	with:
	languages: ${{ matrix.language }}
	queries: +security-extended

	- name: Perform CodeQL Analysis
	uses: github/codeql-action/analyze@68bde559dea0fdcac2102bfdf6230c5f70eb485e # v4.35.4
	with:
	category: '/language:${{matrix.language}}'

	Zizmor:
	name: Zizmor (GitHub Actions)
	runs-on: ubuntu-latest

	permissions:
	security-events: write # Required for upload-sarif (used by zizmor-action) to upload SARIF files.

	steps:
	- name: Checkout repository
	uses: actions/checkout@de0fac2e4500dabe0009e67214ff5f5447ce83dd # v6.0.2
	with:
	persist-credentials: false

	- name: Run zizmor
	uses: zizmorcore/zizmor-action@b1d7e1fb5de872772f31590499237e7cce841e8e # v0.5.3
	with:
	min-severity: informational

Provide feedback