* Set `read-all` permission to `GITHUB_TOKEN` for GitHub Actions

* Pin `jshint` version in linter job
* Fix incorrect conversion between integer types
* Add new GitHub Actions workflows: CodeQL and Scorecards analysis
* Handle Atom feeds with space around CDATA
* Bump `github.com/tdewolff/minify/v2` from 2.9.22 to 2.9.28
* Add Documentation directive to Systemd service
* Do not reset `touch-item` if successfully swiped
* Add support for multiple authors in Atom feeds
* Omit `User-Agent` header in image proxy to avoid being blocked
* Use custom feed user agent to fetch website icon
* Make default Invidious instance configurable
* Add new rewrite rule `add_youtube_video_from_id` to add Youtube videos in Quanta articles
* Add scrape and rewrite rules for `quantamagazine.org`
* Expose entry unshare link in the entry and list views
* Add Google Reader API implementation (experimental)
* Add `Content-Security-Policy` header to feed icon and image proxy endpoints
    - SVG images could contain Javascript. This CSP blocks inline script.
    - Feed icons are served using `<img>` tag and Javascript is not interpreted.
* Add Finnish translation
* Add scraper rule for `ikiwiki.iki.fi`
* Remove `SystemCallFilter` from `miniflux.service`
* Fix minor typo in French translation
-----BEGIN PGP SIGNATURE-----

iQEzBAABCAAdFiEEWnqJrPBVJMqg82+brrehZAcQjbUFAmHrU/0ACgkQrrehZAcQ
jbXnpwf+KZlUxH6eyiP0+EViGROsY2/mFhMW6j1bC7HNBR7vYITnfKH5fAOxcInf
GPa7p63wIpZkAOKx24TSa+kR8tbuisi0vGfCPe1DsVcHMtz/HGR8X/jcooUpZyiz
zOdXrKyeR7auuoye/eooW6RJfwQY7OuQ/X4sRkHEFwBFE+8kTeBEqE0L7Pqw2QAW
u0Zqj//i9i/47TNJ3J44SqFYwOPAgghM68TLg6KR2V2VcfEqy9YXwLUr5SLI2QaH
3emqooggSUzOG3aNfc8L3weQYVDugqpXZDfnA3lRga8Js9m/nNotO5fdWzynyS+9
K2VfDK+9z2QPIW+uuvh5ghjFlUzwBA==
=QoJ+
-----END PGP SIGNATURE-----