Note: Your site administrator must enable 代� �扫描 for your GitHub Enterprise Server instance before you can use this feature. For more information, see "Configuring 代� �扫描 for your appliance."
代� �扫描 是一项功能，可用于分析 GitHub 仓库中的代� �，以查找安全漏洞和编� �错误。 分析发现的任何问题都显示在 GitHub Enterprise Server 中。 For information, see "About 代� �扫描 with CodeQL."
You can run CodeQL 代� �扫描 within GitHub Enterprise Server using GitHub Actions. Alternatively, if you use a third-party continuous integration or continuous delivery/deployment (CI/CD) system, you can run CodeQL analysis in your existing system and upload the results to your GitHub Enterprise Server instance.
You add the CodeQL CLI or the CodeQL runner to your third-party system, then call the tool to analyze code and upload the SARIF results to GitHub Enterprise Server. The resulting 代� �扫描 alerts are shown alongside any alerts generated within GitHub Enterprise Server.
CodeQL CLI version 2.6.3 is available now for GitHub Enterprise Server 3.0 and later versions. For more information on migrating to the CodeQL CLI, see "Migrating from the CodeQL runner to CodeQL CLI."
Note: Uploading SARIF data to display as 代� �扫描 results in GitHub Enterprise Server is supported for organization-owned repositories with GitHub Advanced Security enabled. For more information, see "Managing security and analysis settings for your repository."
The CodeQL runner is a deprecated command-line tool that uses the CodeQL CLI to analyze code and upload the results to GitHub Enterprise Server. The tool mimics the analysis run natively within GitHub Enterprise Server using actions.
CodeQL CLI 2.6.3 is a complete replacement for the runner with full feature parity. Generally, it is better to use the CodeQL CLI directly.
For more information, see "Installing CodeQL CLI in your CI system."
Note: The CodeQL runner is being deprecated. On GitHub Enterprise Server 3.0 and greater, you can install CodeQL CLI version 2.6.3 to replace CodeQL runner.
For more information about the CodeQL runner, see "Running CodeQL runner in your CI system."