2 issues were detected with this workflow: git checkout HEAD^2 is no longer necessary. Please remove this step as Code Scanning recommends analyzing the merge commit for best results. Please specify an on.push hook to analyze and see code scanning alerts from the default branch on the Security tab.