Add security/CVE page #156

	name: Build

	on:
	push:
	branches:
	- '*'
	tags:
	- 'v*'
	- 'website*'
	pull_request:
	branches:
	- 'main'

	permissions:
	contents: read

	jobs:
	build:
	permissions:
	security-events: write # for github/codeql-action
	runs-on: ubuntu-latest
	strategy:
	matrix:
	java: [8, 11]

	steps:
	- name: Checkout
	uses: actions/checkout@2541b1294d2704b0964813337f33b291d3f8596b #v3.0.2

	- name: Set up JDK
	uses: actions/setup-java@2c7a4878f5d120bd643426d54ae1209b29cc01a3 #v3.4.1
	with:
	java-version: ${{ matrix.java }}
	distribution: 'temurin'
	cache: 'maven'

	- name: Maven version
	run: \|
	mkdir -p ./.mvn
	echo '-e -B -DtrimStackTrace=false' > ./.mvn/maven.config
	mvn --version
	mkdir -p target

	- name: Initialize CodeQL
	if: matrix.java == '11'
	uses: github/codeql-action/init@86f3159a697a097a813ad9bfa0002412d97690a4 #v2.1.25
	with:
	languages: java

	- name: Maven build
	run: \|
	mvn install site

	- name: Perform CodeQL Analysis
	if: matrix.java == '11'
	uses: github/codeql-action/analyze@86f3159a697a097a813ad9bfa0002412d97690a4 #v2.1.25

	- name: Website
	if: matrix.java == '11' && github.event_name == 'push' && (startsWith(github.ref, 'refs/tags/website') \|\| startsWith(github.ref, 'refs/tags/v'))
	env:
	GITHUB_TOKEN: ${{ secrets.PERSONAL_TOKEN_GH }}
	run: \|
	chmod +x ./.github/website.sh
	.github/website.sh

Provide feedback