1,881 Search results for "About code scanning alerts"
Code security / Getting started /
Quickstart for securing your repository
You can use a number of GitHub features to help keep your repository secure.
Introduction
This guide shows you how to configure security features for a
Code security / CodeQL CLI / Getting started /
About the CodeQL CLI
You can use the CodeQL CLI to run CodeQL processes locally on software projects or to generate code scanning results for upload to GitHub.
Software developers
Code security / Code scanning / Troubleshooting SARIF uploads /
SARIF results exceed one or more limits
Learn how to resolve problems when a SARIF file is rejected by code scanning because one or more limits is exceeded.
About code scanning limits on SARIF
REST API / Repositories /
REST API endpoints for rules
update. For more information on alert severity levels, see "About code scanning alerts."
Can be one of: none, errors, errors_and_warnings, all
REST API / Organizations /
REST API endpoints for rules
update. For more information on alert severity levels, see "About code scanning alerts."
Can be one of: none, errors, errors_and_warnings, all
Code security / Code scanning / Create advanced setup /
Running CodeQL code scanning in a container
You can run code scanning in a container by ensuring that all processes run in the same container.
About code scanning with a containerized build
If you're
Code security / Code scanning / Troubleshooting SARIF uploads /
Upload was rejected because CodeQL default setup is enabled for code scanning
You cannot upload SARIF results generated by the CodeQL action or CodeQL CLI when default setup for code scanning is enabled. Check your configuration
Code security / Code scanning / Enable code scanning /
Evaluating default setup for code scanning
Learn how to assess how code scanning is working for you, and how you can customize your setup to best meet your code security needs.
When you first start
REST API /
REST API endpoints for code scanning
REST API endpoints for code scanning
Use the REST API to retrieve and update code scanning alerts from a repository.
REST API endpoints for code scanning
Code security / Code scanning /
Integrating with code scanning
Integrating with code scanning
You can integrate third-party code analysis tools with GitHub code scanning by uploading data as SARIF files.
About integration