From 5b4f0d0092e1b06862cb9ab5cd4fcf74d698cac7 Mon Sep 17 00:00:00 2001
From: jmc <33655003+jmcook1186@users.noreply.github.com>
Date: Thu, 5 Dec 2024 15:02:37 +0000
Subject: [PATCH] feat(package): add codeql info to security.md

---
 SECURITY.md | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/SECURITY.md b/SECURITY.md
index da858443..452bed78 100644
--- a/SECURITY.md
+++ b/SECURITY.md
@@ -93,7 +93,7 @@ We perform regular reviews inline with the information provided below.  All rele
 
 ## Analysis
 ### Static code analysis
-- At least one FLOSS static code analysis tool - ❌.
+- At least one FLOSS static code analysis tool - ✅ CodeQL is integrated into our CI/CD.
 - All medium and higher severity exploitable vulnerabilities discovered with static code analysis MUST be fixed in a timely way after they are confirmed - ✅ We have not yet had any exploitable vulnerabilities reported, but the GSF team will respond promptly to any disclosed issues.
 
 ### Dynamic code analysis