Uploading CodeQL analysis results to GitHub - GitHub Docs
You can use the CodeQL CLI to upload CodeQL analysis results to GitHub.| GitHub Docs
You can use the CodeQL CLI to upload CodeQL analysis results to GitHub.| GitHub Docs
You can run queries against a CodeQL database extracted from a codebase.| GitHub Docs
You can upload SARIF files generated outside GitHub and see code scanning alerts from third-party tools in your repository.| GitHub Docs
To display results from a third-party static analysis tool in your repository on GitHub, you'll need your results stored in a SARIF file that supports a specific subset of the SARIF 2.1.0 JSON schema for code scanning. If you use the default CodeQL static analysis engine, then your results will display in your repository on GitHub automatically.| GitHub Docs
When code scanning identifies a problem in a pull request, you can review the highlighted code and resolve the alert.| GitHub Docs
Learn how GitHub uses AI to suggest potential fixes for code scanning alerts and find out how best to mitigate limitations in the AI suggestions.| GitHub Docs
You can analyze your code with the CodeQL CLI or another tool in a third-party continuous integration system and upload the results to GitHub. The resulting code scanning alerts are shown alongside any alerts generated within GitHub.| GitHub Docs
You can use rulesets to set code scanning merge protection for pull requests.| GitHub Docs
