feat(ci): introduce codeql

[ShadowySpirits]

close #6

Due to GitHub restrictions, we must upgrade our plan or make this repo public to enable code scan. @daniel-y @amos201600

FYI: https://docs.github.com/en/code-security/code-scanning/troubleshooting-code-scanning/advanced-security-must-be-enabled

[codecov]

Codecov Report

Merging #56 (6e41cca) into main (38f9b62) will not change coverage.
The diff coverage is n/a.

Additional details and impacted files

@@            Coverage Diff            @@
##               main      #56   +/-   ##
=========================================
  Coverage     72.88%   72.88%           
  Complexity      166      166           
=========================================
  Files            35       35           
  Lines           745      745           
  Branches         71       71           
=========================================
  Hits            543      543           
  Misses          164      164           
  Partials         38       38           

Components	Coverage Δ
RocketMQ Broker	∅ <ø> (∅)
RocketMQ Common	48.27% <ø> (ø)
RocketMQ Controller	54.60% <ø> (ø)
RocketMQ Proxy	∅ <ø> (∅)
RocketMQ Store	82.01% <ø> (ø)

[github-advanced-security]

This pull request sets up GitHub code scanning for this repository. Once the scans have completed and the checks have passed, the analysis results for this pull request branch will appear on this overview. Once you merge this pull request, the 'Security' tab will show more code scanning analysis results (for example, for the default branch). Depending on your configuration and choice of analysis tool, future pull requests will be annotated with code scanning analysis results. For more information about GitHub code scanning, check out the documentation.