Automatically scanning your code for vulnerabilities and errors

You can find vulnerabilities and errors in your project's code on GitHub, as well as view, triage, understand, and resolve the related code scanning alerts.

Code scanning is available for all public repositories on GitHub.com. Code scanning is also available for private repositories owned by organizations that use GitHub Enterprise Cloud and have a license for GitHub Advanced Security. For more information, see "GitHub's products."

About code scanning
You can use code scanning to find security vulnerabilities and errors in the code for your project on GitHub.
About code scanning alerts
Learn about the different types of code scanning alerts and the information that helps you understand the problem each alert highlights.
Triaging code scanning alerts in pull requests
When code scanning identifies a problem in a pull request, you can review the highlighted code and resolve the alert.
Setting up code scanning for a repository
You can set up code scanning by adding a workflow to your repository.
Managing code scanning alerts for your repository
From the security view, you can view, fix, or dismiss alerts for potential vulnerabilities or errors in your project's code.
タスクリストを使ったIssue内のCode scanningアラートの追跡
タスクリストを使って、IssueにCode scanningアラートを追加できます。そうすることで、アラートの修復を含む開発作業の計画を立てやすくなります。
Configuring code scanning
You can configure how GitHub scans the code in your project for vulnerabilities and errors.
About code scanning with CodeQL
You can use CodeQL to identify vulnerabilities and errors in your code. The results are shown as code scanning alerts in GitHub.
Recommended hardware resources for running CodeQL
Recommended specifications (RAM, CPU cores, and disk) for running CodeQL analysis on self-hosted machines, based on the size of your codebase.
Configuring the CodeQL workflow for compiled languages
You can configure how GitHub uses the CodeQL分析ワークフロー to scan code written in compiled languages for vulnerabilities and errors.
CodeQL ワークフローのトラブルシューティング
code scanning で問題が生じている場合、ここに掲載されている問題解決のためのヒントを使ってトラブルを解決できます。
コンテナで CodeQL Code scanningを実行する
すべてのプロセスが同じコンテナで動作するようにすることで、code scanning を実行できます。
Viewing code scanning logs
You can view the output generated during code scanning analysis in GitHub.com.