Add a disabled ignore directive for github/codeql-action

Once enabled downstream this will ensure that downstream projects will
receive updates to this dependency from the upstream skeleton (which
will get updated by dependabot) instead of in the downstream
repository.

Author: mcdonnnj

.github/dependabot.yml

@@ -21,6 +21,7 @@ updates:
       - dependency-name: step-security/harden-runner
       # # Managed by cisagov/skeleton-aws-lambda-python
       # - dependency-name: actions/upload-artifact
+      # - dependency-name: github/codeql-action
     package-ecosystem: github-actions
     schedule:
       interval: weekly