Create codeql.yml for vulnerability check

[auvipy]

No description provided.

[github-advanced-security]

This pull request sets up GitHub code scanning for this repository. Once the scans have completed and the checks have passed, the analysis results for this pull request branch will appear on this overview. Once you merge this pull request, the 'Security' tab will show more code scanning analysis results (for example, for the default branch). Depending on your configuration and choice of analysis tool, future pull requests will be annotated with code scanning analysis results. For more information about GitHub code scanning, check out the documentation.

[cclauss]

I have never seen this tool raise any interesting errors on a Python repo. Can you point to an example of where it has?

[JonathanHuot]

I guess this can raise any issues listed in these issues https://docs.github.com/en/code-security/code-scanning/managing-your-code-scanning-configuration/python-built-in-queries
However security-extended settings has to be turn on to execute all.

This can be still be improved over time, but once this is enabled we benefit of all upcoming.