Frecuentemente publicamos actualizaciones de nuestra documentación. Es posible que la traducción de esta página esté en curso. Para conocer la información más actual, visita la documentación en inglés. Si existe un problema con las traducciones en esta página, por favor infórmanos.

About integration with code scanning

You can perform escaneo de código externally and then display the results in GitHub, or set up webhooks that listen to escaneo de código activity in your repository.

Escaneo de código is available for all public repositories, and for private repositories owned by organizations where GitHub Advanced Security is enabled. For more information, see "About GitHub Advanced Security."

En este artículo

Nota: Escaneo de código se encuentra acutalmente en beta y está sujeto a cambios. To request access to the beta, join the waitlist.

As an alternative to running escaneo de código within GitHub, you can perform analysis elsewhere and then upload the results. Alerts for escaneo de código that you run externally are displayed in the same way as those for escaneo de código that you run within GitHub. For more information, see "Managing escaneo de código alerts for your repository."

If you use a third-party static analysis tool that can produce results as Static Analysis Results Interchange Format (SARIF) 2.1.0 data, you can upload this to GitHub. For more information, see "Uploading a SARIF file to GitHub."

Integrations with webhooks

You can use escaneo de código webhooks to build or set up integrations, such as App GitHubs or App OAuths, that subscribe to escaneo de código events in your repository. For example, you could build an integration that creates an issue on GitHub or sends you a Slack notification when a new escaneo de código alert is added in your repository. For more information, see "Creating webhooks" and "Webhook events and payloads."

Further reading

¿Te ayudó este documento?

Privacy policy

Help us make these docs great!

All GitHub docs are open source. See something that's wrong or unclear? Submit a pull request.

Make a contribution

O, learn how to contribute.