Jan 14, 2025 · I am running CodeQL inside a private organization with advanced security enabled. It is working good for default queries. The queries security-extended and security-and-quality are …

Jan 17, 2024 · Correct. CodeQL Autobuild is documented for each language on the GitHub docs "About autobuild for CodeQL". You need to specify.net build steps manually as you would in your normal CI. …

May 22, 2024 · The task AdvancedSecurity-Codeql-Init@1 points to a codeqlconfig yaml file and in this file I point to a simple todo codeql query. This is afaik how it has to be done according to the …

Oct 11, 2022 · Is there a way to exclude files from CodeQL scanning on GitHub Asked 3 years, 4 months ago Modified 1 year ago Viewed 8k times

Aug 23, 2023 · Now as I'm trying to scan this by codeql, it was trying to autobuild it without success. After investigating it online I understood that only specific type of projects can work with autobuild …

Apr 27, 2025 · Do you have a codeql-pack.yml / qlpack.yml file with the codeql/cpp-all pack as dependency? See also the documentation about the codeql-pack.yml file. If not, it might be easiest to …

May 25, 2022 · Default setup currently supports analysis of JavaScript (including TypeScript), Python, and Ruby code. More languages will be supported soon, and all other languages supported by …

Nov 28, 2022 · However, if you have already set up CodeQL code scanning manually you could maybe use the REST API endpoints for disabling and enabling the already existing code scanning workflow. …

Apr 12, 2023 · I am trying to configure CodeQL scanning on my repo. For that purpose I am using the template provided by GitHub: # For most projects, this workflow file will not need changing; you …

Oct 26, 2023 · Since CodeQL needs to trace the compiler invocations that happen to create its' database, you should disable the gradle daemon: Checkout the sample from these CodeQL docs: …