Fix workflows

Author: MattyTheHacker

.github/workflows/codeql-analysis.yml

@@ -1,16 +1,21 @@
-# https://docs.github.com/en/free-pro-team@latest/github/finding-security-vulnerabilities-and-errors-in-your-code/configuring-code-scanning
 name: "CodeQL"
 
 on:
-  push: {}
+  push:
+    branches: [ "main" ]
   pull_request:
-    # The branches below must be a subset of the branches above
-    branches: [ main ]
+    branches: [ "main" ]
+  schedule:
+    - cron: '39 7 * * 6'
 
 jobs:
   analyze:
     name: Analyze
     runs-on: ubuntu-latest
+    permissions:
+      actions: read
+      contents: read
+      security-events: write
 
     strategy:
       fail-fast: false