diff --git a/.github/workflows/codeql-analysis.yml b/.github/workflows/codeql-analysis.yml
new file mode 100644
index 000000000000..9f6bd102befe
--- /dev/null
+++ b/.github/workflows/codeql-analysis.yml
@@ -0,0 +1,72 @@
+# For most projects, this workflow file will not need changing; you simply need
+# to commit it to your repository.
+#
+# You may wish to alter this file to override the set of languages analyzed,
+# or to provide custom queries or build logic.
+#
+# ******** NOTE ********
+# We have attempted to detect the languages in your repository. Please check
+# the `language` matrix defined below to confirm you have the correct set of
+# supported CodeQL languages.
+#
+name: "CodeQL"
+
+on:
+  push:
+    branches: [ "main" ]
+  pull_request:
+    # The branches below must be a subset of the branches above
+    branches: [ "main" ]
+  schedule:
+    - cron: '35 3 * * 6'
+
+jobs:
+  analyze:
+    name: Analyze
+    runs-on: ubuntu-latest
+    permissions:
+      actions: read
+      contents: read
+      security-events: write
+
+    strategy:
+      fail-fast: false
+      matrix:
+        language: [ 'javascript', 'python' ]
+        # CodeQL supports [ 'cpp', 'csharp', 'go', 'java', 'javascript', 'python', 'ruby' ]
+        # Learn more about CodeQL language support at https://aka.ms/codeql-docs/language-support
+
+    steps:
+    - name: Checkout repository
+      uses: actions/checkout@v3
+
+    # Initializes the CodeQL tools for scanning.
+    - name: Initialize CodeQL
+      uses: github/codeql-action/init@v2
+      with:
+        languages: ${{ matrix.language }}
+        # If you wish to specify custom queries, you can do so here or in a config file.
+        # By default, queries listed here will override any specified in a config file.
+        # Prefix the list here with "+" to use these queries and those in the config file.
+        
+        # Details on CodeQL's query packs refer to : https://docs.github.com/en/code-security/code-scanning/automatically-scanning-your-code-for-vulnerabilities-and-errors/configuring-code-scanning#using-queries-in-ql-packs
+        # queries: security-extended,security-and-quality
+
+        
+    # Autobuild attempts to build any compiled languages  (C/C++, C#, or Java).
+    # If this step fails, then you should remove it and run the build manually (see below)
+    - name: Autobuild
+      uses: github/codeql-action/autobuild@v2
+
+    # ℹ️ Command-line programs to run using the OS shell.
+    # 📚 See https://docs.github.com/en/actions/using-workflows/workflow-syntax-for-github-actions#jobsjob_idstepsrun
+
+    #   If the Autobuild fails above, remove it and uncomment the following three lines. 
+    #   modify them (or add more) to build your code if your project, please refer to the EXAMPLE below for guidance.
+
+    # - run: |
+    #   echo "Run, Build Application using script"
+    #   ./location_of_script_within_repo/buildscript.sh
+
+    - name: Perform CodeQL Analysis
+      uses: github/codeql-action/analyze@v2
diff --git a/package-lock.json b/package-lock.json
index dcf70ceb614c..fc10f22fbf64 100644
--- a/package-lock.json
+++ b/package-lock.json
@@ -26,7 +26,7 @@
         "express": "^4.18.1",
         "express-timeout-handler": "^2.2.2",
         "flat": "^5.0.2",
-        "github-slugger": "^1.4.0",
+        "github-slugger": "^2.0.0",
         "got": "^12.1.0",
         "gray-matter": "^4.0.3",
         "hast-util-from-parse5": "^7.1.0",
@@ -100,7 +100,7 @@
         "@jest/globals": "29.0.0",
         "@octokit/graphql": "4.8.0",
         "@octokit/rest": "^18.12.0",
-        "@types/github-slugger": "^1.3.0",
+        "@types/github-slugger": "^2.0.0",
         "@types/imurmurhash": "^0.1.1",
         "@types/js-cookie": "^3.0.2",
         "@types/lodash": "^4.14.182",
@@ -4230,9 +4230,14 @@
       "peer": true
     },
     "node_modules/@types/github-slugger": {
-      "version": "1.3.0",
+      "version": "2.0.0",
+      "resolved": "https://registry.npmjs.org/@types/github-slugger/-/github-slugger-2.0.0.tgz",
+      "integrity": "sha512-z/FaJhjFPk5mtrsZWeqyvaJdcZKw6CVCTuynEMrcXtgyozN3yMrtL13xWv8uQV2bWtwSXkdiNM37HEKkEj9x1Q==",
+      "deprecated": "This is a stub types definition. github-slugger provides its own type definitions, so you do not need this installed.",
       "dev": true,
-      "license": "MIT"
+      "dependencies": {
+        "github-slugger": "*"
+      }
     },
     "node_modules/@types/graceful-fs": {
       "version": "4.1.5",
@@ -9719,8 +9724,9 @@
       }
     },
     "node_modules/github-slugger": {
-      "version": "1.4.0",
-      "license": "ISC"
+      "version": "2.0.0",
+      "resolved": "https://registry.npmjs.org/github-slugger/-/github-slugger-2.0.0.tgz",
+      "integrity": "sha512-IaOQ9puYtjrkq7Y0Ygl9KDZnrf/aiUJYUpVf89y8kyaxbRG7Y1SrX/jaumrv81vc61+kiMempujsM3Yw7w5qcw=="
     },
     "node_modules/glob": {
       "version": "8.0.3",
@@ -17274,6 +17280,11 @@
         "url": "https://opencollective.com/unified"
       }
     },
+    "node_modules/rehype-slug/node_modules/github-slugger": {
+      "version": "1.5.0",
+      "resolved": "https://registry.npmjs.org/github-slugger/-/github-slugger-1.5.0.tgz",
+      "integrity": "sha512-wIh+gKBI9Nshz2o46B0B3f5k/W+WI9ZAv6y5Dn5WJ5SK1t0TnDimB4WE5rmTD05ZAIn8HALCZVmCsvj0w0v0lw=="
+    },
     "node_modules/rehype-stringify": {
       "version": "9.0.3",
       "resolved": "https://registry.npmjs.org/rehype-stringify/-/rehype-stringify-9.0.3.tgz",
@@ -23672,8 +23683,13 @@
       "peer": true
     },
     "@types/github-slugger": {
-      "version": "1.3.0",
-      "dev": true
+      "version": "2.0.0",
+      "resolved": "https://registry.npmjs.org/@types/github-slugger/-/github-slugger-2.0.0.tgz",
+      "integrity": "sha512-z/FaJhjFPk5mtrsZWeqyvaJdcZKw6CVCTuynEMrcXtgyozN3yMrtL13xWv8uQV2bWtwSXkdiNM37HEKkEj9x1Q==",
+      "dev": true,
+      "requires": {
+        "github-slugger": "*"
+      }
     },
     "@types/graceful-fs": {
       "version": "4.1.5",
@@ -27563,7 +27579,9 @@
       }
     },
     "github-slugger": {
-      "version": "1.4.0"
+      "version": "2.0.0",
+      "resolved": "https://registry.npmjs.org/github-slugger/-/github-slugger-2.0.0.tgz",
+      "integrity": "sha512-IaOQ9puYtjrkq7Y0Ygl9KDZnrf/aiUJYUpVf89y8kyaxbRG7Y1SrX/jaumrv81vc61+kiMempujsM3Yw7w5qcw=="
     },
     "glob": {
       "version": "8.0.3",
@@ -32688,6 +32706,13 @@
         "hast-util-to-string": "^2.0.0",
         "unified": "^10.0.0",
         "unist-util-visit": "^4.0.0"
+      },
+      "dependencies": {
+        "github-slugger": {
+          "version": "1.5.0",
+          "resolved": "https://registry.npmjs.org/github-slugger/-/github-slugger-1.5.0.tgz",
+          "integrity": "sha512-wIh+gKBI9Nshz2o46B0B3f5k/W+WI9ZAv6y5Dn5WJ5SK1t0TnDimB4WE5rmTD05ZAIn8HALCZVmCsvj0w0v0lw=="
+        }
       }
     },
     "rehype-stringify": {
diff --git a/package.json b/package.json
index 5eb76756a9af..351e3203421e 100644
--- a/package.json
+++ b/package.json
@@ -28,7 +28,7 @@
     "express": "^4.18.1",
     "express-timeout-handler": "^2.2.2",
     "flat": "^5.0.2",
-    "github-slugger": "^1.4.0",
+    "github-slugger": "^2.0.0",
     "got": "^12.1.0",
     "gray-matter": "^4.0.3",
     "hast-util-from-parse5": "^7.1.0",
@@ -102,7 +102,7 @@
     "@jest/globals": "29.0.0",
     "@octokit/graphql": "4.8.0",
     "@octokit/rest": "^18.12.0",
-    "@types/github-slugger": "^1.3.0",
+    "@types/github-slugger": "^2.0.0",
     "@types/imurmurhash": "^0.1.1",
     "@types/js-cookie": "^3.0.2",
     "@types/lodash": "^4.14.182",