Managing your code scanning configuration
You can manage your existing code scanning configuration with the help of metrics and logging outputs generated by your analysis.
Who can use this feature?
Code scanning is available for the following repository types:
- Public repositories on GitHub.com
- Organization-owned repositories on GitHub Team with GitHub Code Security enabled
About the tool status page for code scanning
The tool status page shows useful information about all of your code scanning tools. If code scanning is not working as you'd expect, the tool status page is a good starting point for debugging problems.
Editing your configuration of default setup
You can edit your existing configuration of default setup for code scanning to better meet your needs.
Set code scanning merge protection
You can use rulesets to set code scanning merge protection for pull requests.
Enabling delegated alert dismissal for code scanning
You can use delegated alert dismissal to control who can dismiss an alert found by code scanning.
CodeQL query suites
You can choose from different built-in CodeQL query suites to use in your CodeQL code scanning setup.
Configuring larger runners for default setup
You can run code scanning default setup more quickly on bigger codebases using larger runners.
Viewing code scanning logs
You can view the output generated during code scanning analysis in GitHub.
Actions queries for CodeQL analysis
Explore the queries that CodeQL uses to analyze code written in GitHub Actions workflow files when you select the default or the security-extended query suite.
C and C++ queries for CodeQL analysis
Explore the queries that CodeQL uses to analyze code written in C or C++ when you select the default or the security-extended query suite.
C# queries for CodeQL analysis
Explore the queries that CodeQL uses to analyze code written in C# when you select the default or the security-extended query suite.
GitHub Actions queries for CodeQL analysis
Explore the queries that CodeQL uses to analyze workflows used by GitHub Actions when you select the default or the security-extended query suite.
Go queries for CodeQL analysis
Explore the queries that CodeQL uses to analyze code written in Go (Golang) when you select the default or the security-extended query suite.
Java and Kotlin queries for CodeQL analysis
Explore the queries that CodeQL uses to analyze code written in Java or Kotlin when you select the default or the security-extended query suite.
JavaScript and TypeScript queries for CodeQL analysis
Explore the queries that CodeQL uses to analyze code written in JavaScript or TypeScript when you select the default or the security-extended query suite.
Python queries for CodeQL analysis
Explore the queries that CodeQL uses to analyze code written in Python when you select the default or the security-extended query suite.
Ruby queries for CodeQL analysis
Explore the queries that CodeQL uses to analyze code written in Ruby when you select the default or the security-extended query suite.
Swift queries for CodeQL analysis
Explore the queries that CodeQL uses to analyze code written in Swift when you select the default or the security-extended query suite.