Move query selections into config file

Ignore `goto`s and "recommendations" for now.

.github/codeql/config.yml

@@ -0,0 +1,22 @@
+name: "CodeQL Config"
+
+# Queries and the suites they belong to are documented at
+#    https://codeql.github.com/codeql-query-help/cpp/
+
+queries:
+  - uses: security-and-quality
+  # Choose the above from 3 query suites:
+  #   default
+  #      The default set of queries
+  #   security-extended
+  #      `default` suite plus lower severity and precision queries
+  #   security-and-quality
+  #      `security-extended`, plus maintainability and reliability queries
+
+query-filters:
+  - exclude:
+    id:
+      - cpp/use-of-goto
+  - exclude:
+    problem.severity:
+      - recommendation

.github/workflows/codeql.yml

@@ -47,7 +47,7 @@ jobs:
         uses: github/codeql-action/init@v2
         with:
           languages: ${{ matrix.language }}
-          queries: +security-and-quality
+          config-file: ./.github/codeql/config.yml
 
       - name: Build C/C++
         run: |