Skip to main content

Introduction to code scanning

Learn what code scanning is, how it helps you secure your code, and what code scanning tools are available.

Who can use this feature?

Code scanning is available for all public repositories on GitHub.com. To use code scanning in a private repository owned by an organization, you must have a license for GitHub Advanced Security. For more information, see "About GitHub Advanced Security."

About code scanning

You can use code scanning to find security vulnerabilities and errors in the code for your project on GitHub.

About code scanning with CodeQL

You can use CodeQL to identify vulnerabilities and errors in your code. The results are shown as code scanning alerts in GitHub.