diff --git a/.github/workflows/codeql-analysis.yml' b/.github/workflows/codeql-analysis.yml'
new file mode 100644
index 000000000000..2302884ee0e5
--- /dev/null
+++ b/.github/workflows/codeql-analysis.yml'
@@ -0,0 +1,29 @@
+     on:
+       push:
+         branches: [ main ]
+       pull_request:
+         # The branches below must be a subset of the branches above
+         branches: [ main ]
+       schedule:
+         
+cron: '0 0 * * 1' # Runs every Monday
+
+     jobs:
+       analyze:
+         name: Analyze
+         runs-on: ubuntu-latest
+
+         steps:
+         
+name: Checkout repository
+         uses: actions/checkout@v2
+
+         
+name: Initialize the CodeQL tools
+         uses: github/codeql-action/init@v2
+         with:
+           languages: ['javascript', 'python'] # replace with the languages used in your repository
+
+         
+name: Perform CodeQL Analysis
+         uses: github/codeql-action/analyze@v2```