diff --git a/.github/workflows/ci.yml b/.github/workflows/ci.yml
index 386b656..65de929 100644
--- a/.github/workflows/ci.yml
+++ b/.github/workflows/ci.yml
@@ -14,37 +14,46 @@ concurrency:
   cancel-in-progress: true
 
 jobs:
-  linux:
-    name: python-${{ matrix.python-version }} on ubuntu-latest
+  python-3.11 on ubuntu-latest:
     runs-on: ubuntu-latest
-    strategy:
-      fail-fast: false
-      matrix:
-        python-version: ["3.11","3.12"]
     steps:
       - uses: actions/checkout@v4
       - uses: actions/setup-python@v5
-        with:
-          python-version: ${{ matrix.python-version }}
+        with: { python-version: "3.11" }
       - run: python -m pip install -U pip
       - run: pip install ruff black pytest mypy
+      - run: pip install -e .
       - run: ruff check .
       - run: black --check .
       - run: ruff format --check .
       - run: pytest -q
       - run: mypy .
 
-  windows_optional:
-    name: python-3.12 on windows-latest
+  python-3.12 on ubuntu-latest:
+    runs-on: ubuntu-latest
+    steps:
+      - uses: actions/checkout@v4
+      - uses: actions/setup-python@v5
+        with: { python-version: "3.12" }
+      - run: python -m pip install -U pip
+      - run: pip install ruff black pytest mypy
+      - run: pip install -e .
+      - run: ruff check .
+      - run: black --check .
+      - run: ruff format --check .
+      - run: pytest -q
+      - run: mypy .
+
+  windows-optional-3.12:
     runs-on: windows-latest
     continue-on-error: true
     steps:
       - uses: actions/checkout@v4
       - uses: actions/setup-python@v5
-        with:
-          python-version: "3.12"
+        with: { python-version: "3.12" }
       - run: python -m pip install -U pip
       - run: pip install ruff black pytest mypy
+      - run: pip install -e .
       - run: ruff check .
       - run: black --check .
       - run: ruff format --check .
diff --git a/.github/workflows/codeql.yml b/.github/workflows/codeql.yml
index 6fa92ce..e2a807f 100644
--- a/.github/workflows/codeql.yml
+++ b/.github/workflows/codeql.yml
@@ -1,26 +1,24 @@
 name: CodeQL
-
 on:
   push:
     branches: [main]
   pull_request:
     types: [opened, synchronize, reopened, ready_for_review, labeled, unlabeled]
-
-concurrency:
-  group: codeql-${{ github.ref }}
-  cancel-in-progress: true
+  workflow_dispatch:
 
 permissions:
   contents: read
   security-events: write
 
+concurrency:
+  group: codeql-${{ github.ref }}
+  cancel-in-progress: true
+
 jobs:
   analyze:
-    if: ${{ (github.event_name == 'push' && startsWith(github.ref, 'refs/heads/main')) || (github.event_name == 'pull_request' && github.event.pull_request.draft == false && contains(github.event.pull_request.labels.*.name, 'ready')) }}
     runs-on: ubuntu-latest
     steps:
       - uses: actions/checkout@v4
       - uses: github/codeql-action/init@v3
-        with:
-          languages: python
+        with: { languages: python }
       - uses: github/codeql-action/analyze@v3