English
Explore by product
Code security
English
Using CodeQL code scanning with your existing CI system
Code scanning is available for all public repositories, and for private repositories owned by organizations where GitHub Advanced Security is enabled. For more information, see "About GitHub Advanced Security."
About CodeQL code scanning in your CI system→
You can analyze your code with CodeQL in a third-party continuous integration system and upload the results to GitHub. The resulting code scanning alerts are shown alongside any alerts generated within GitHub.
Installing CodeQL CLI in your CI system→
You can install the CodeQL CLI and use it to perform CodeQL code scanning in a third-party continuous integration system.
Configuring CodeQL CLI in your CI system→
You can configure your continuous integration system to run the CodeQL CLI, perform CodeQL analysis, and upload the results to GitHub for display as code scanning alerts.
Running CodeQL runner in your CI system→
You can use the CodeQL runner to perform CodeQL code scanning in a third-party continuous integration system.
Configuring CodeQL runner in your CI system→
You can configure how the CodeQL runner scans the code in your project and uploads the results to GitHub.
Troubleshooting CodeQL runner in your CI system→
If you're having problems with the CodeQL runner, you can troubleshoot by using these tips.
Migrating from the CodeQL runner to CodeQL CLI→
You can use the CodeQL CLI to complete the same tasks as with the CodeQL runner.
Help us make these docs great!
All GitHub docs are open source. See something that's wrong or unclear? Submit a pull request.
Make a contribution