Creating a workflow for code scanning
Create and customize a GitHub Actions workflow to control the analysis of your codebase.
Code scanning is available for organization-owned repositories in GitHub AE. This is a GitHub Advanced Security feature (free during the beta release). For more information, see "About GitHub Advanced Security."
You can configure code scanning for a repository to find security vulnerabilities in your code.
You can customize how GitHub scans the code in your project for vulnerabilities and errors.
Understand the autobuild method CodeQL analysis uses to build code for compiled languages and learn how you can customize the build command if you need to.
You can use a script to configure code scanning for a specific group of repositories in your organization.
Recommended specifications (RAM, CPU cores, and disk) for running CodeQL analysis on self-hosted machines, based on the size of your codebase.
You can run code scanning in a container by ensuring that all processes run in the same container.