既存の CI システムで CodeQL Code scanningを使用する

既存のCIシステム内でCodeQL分析を実行し、結果をGitHubにアップロードしてcode scanningアラートとして表示させることができます。

Code scanning is available for all public repositories on GitHub.com. Code scanning is also available for private repositories owned by organizations that use GitHub Enterprise Cloud and have a license for GitHub Advanced Security. For more information, see "GitHub's products."

About CodeQL code scanning in your CI system
You can analyze your code with CodeQL in a third-party continuous integration system and upload the results to GitHub.com. The resulting code scanning alerts are shown alongside any alerts generated within GitHub.
Installing CodeQL CLI in your CI system
You can install the CodeQL CLI and use it to perform CodeQL code scanning in a third-party continuous integration system.
Configuring CodeQL CLI in your CI system
You can configure your continuous integration system to run the CodeQL CLI, perform CodeQL analysis, and upload the results to GitHub for display as code scanning alerts.
Running CodeQL runner in your CI system
You can use the CodeQLランナー to perform CodeQL code scanning in a third-party continuous integration system.
Migrating from the CodeQL runner to CodeQL CLI
You can use the CodeQL CLI to complete the same tasks as with the CodeQLランナー.

既存の CI システムで CodeQL Code scanningを使用する

About CodeQL code scanning in your CI system

Installing CodeQL CLI in your CI system

Configuring CodeQL CLI in your CI system

Running CodeQL runner in your CI system

Migrating from the CodeQL runner to CodeQL CLI