Skip to main content

This version of GitHub Enterprise Server will be discontinued on 2024-06-29. No patch releases will be made, even for critical security issues. For better performance, improved security, and new features, upgrade to the latest version of GitHub Enterprise Server. For help with the upgrade, contact GitHub Enterprise support.

Troubleshooting SARIF uploads

Learn how to resolve problems uploading SARIF files of code scanning results to GitHub.

Upload fails because GitHub Advanced Security is disabled

You can only upload SARIF results to repositories where GitHub Advanced Security is enabled.

Upload was rejected because CodeQL default setup is enabled for code scanning

You cannot upload SARIF results generated by the CodeQL action or CodeQL CLI when default setup for code scanning is enabled. Check your configuration and decide whether to keep default setup or unblock SARIF upload.

GitHub token is required to upload SARIF results

You need to provide an authentication method for the upload process to use to access the repository.

SARIF file is invalid

Code scanning can only process syntactically valid SARIF files. Invalid files are rejected.

SARIF results file is too large

You cannot upload a SARIF results file larger than 10 MB to code scanning. Explore ways to generate a smaller file containing the highest impact results.

SARIF results exceed one or more limits

Learn how to resolve problems when a SARIF file is rejected by code scanning because one or more limits is exceeded.