As an alternative to running 代码扫描 within GitHub, you can perform analysis elsewhere and then upload the results. Alerts for 代码扫描 that you run externally are displayed in the same way as those for 代码扫描 that you run within GitHub. For more information, see "Managing 代码扫描 alerts for your repository."
If you use a third-party static analysis tool that can produce results as Static Analysis Results Interchange Format (SARIF) 2.1.0 data, you can upload this to GitHub. For more information, see "Uploading a SARIF file to GitHub."
If you run code scanning using multiple configurations, then sometimes an alert will have multiple analysis origins. If an alert has multiple analysis origins, you can view the status of the alert for each analysis origin on the alert page. 更多信息请参阅“关于分析源”。
You can use 代码扫描 webhooks to build or set up integrations, such as GitHub 应用程序 or OAuth 应用程序, that subscribe to 代码扫描 events in your repository. For example, you could build an integration that creates an issue on GitHub Enterprise Cloud or sends you a Slack notification when a new 代码扫描 alert is added in your repository. For more information, see "Creating webhooks" and "Webhook events and payloads."