Add CodeQL workflow for Kotlin analysis

[devcrocod]

Motivation and Context

How Has This Been Tested?

Breaking Changes

Types of changes

• Bug fix (non-breaking change which fixes an issue)
• New feature (non-breaking change which adds functionality)
• Breaking change (fix or feature that would cause existing functionality to change)
• Documentation update

Checklist

• I have read the MCP Documentation
• My code follows the repository's style guidelines
• New and existing tests pass locally
• I have added appropriate error handling
• I have added or updated documentation as needed

Additional context

[Copilot]

Pull Request Overview

This PR adds a GitHub Actions workflow to enable CodeQL static analysis for Kotlin code in the repository, providing automated security vulnerability scanning and code quality checks.

• Adds a comprehensive CodeQL workflow configuration targeting Kotlin/Java analysis
• Configures the workflow to run on pushes, pull requests to main, and weekly schedule
• Sets up manual build mode with Gradle caching for efficient analysis

Comments suppressed due to low confidence (2)

.github/workflows/codeql.yml:41

• The CodeQL action version @V3 is outdated. Consider upgrading to @v4 which includes performance improvements and bug fixes.

        uses: github/codeql-action/init@v3

.github/workflows/codeql.yml:60

• The CodeQL action version @V3 is outdated. Consider upgrading to @v4 to match the init action and benefit from latest improvements.

        uses: github/codeql-action/analyze@v3

[Copilot]

The cache configuration is missing a restore-keys fallback, which could result in cache misses when gradle files change slightly. Consider adding restore-keys to improve cache hit rates.

Suggested change

	key: ${{ runner.os }}-gradle-${{ hashFiles('**/*.gradle*', '**/gradle-wrapper.properties') }}
	key: ${{ runner.os }}-gradle-${{ hashFiles('**/*.gradle*', '**/gradle-wrapper.properties') }}
	restore-keys: |
	${{ runner.os }}-gradle-

[e5l]

lgtm