Jan 14, 2025 · I am running CodeQL inside a private organization with advanced security enabled. It is working good for default queries. The queries security-extended and security-and-quality are …

Nov 28, 2022 · However, if you have already set up CodeQL code scanning manually you could maybe use the REST API endpoints for disabling and enabling the already existing code scanning workflow. …

May 22, 2024 · I want to run custom codeql queries for Advanced Security in Azure DevOps (this is a feature that is now available in Azure DevOps not only GitHub). The built in default queries like …

Oct 11, 2022 · Is there a way to exclude files from CodeQL scanning on GitHub Ask Question Asked 3 years, 6 months ago Modified 1 year, 2 months ago

Oct 2, 2023 · Find an example repo here: ghas-demo designed for GitHub workflows. However, it also applies to Azure DevOps. Just import the repo to DevOps, then create a Yaml pipeline by following …

Aug 23, 2023 · Codeql failing to scan github repository storing only java code Ask Question Asked 2 years, 8 months ago Modified 2 years, 7 months ago

Apr 12, 2023 · I am trying to configure CodeQL scanning on my repo. For that purpose I am using the template provided by GitHub: # For most projects, this workflow file will not need changing; you …

Dec 17, 2024 · By default the codeql task will scan the ENTIRE code base. Which is not what I want. How can I configure Github advanced security to only scan one project?For example the front-end …

Oct 26, 2023 · Since CodeQL needs to trace the compiler invocations that happen to create its' database, you should disable the gradle daemon: Checkout the sample from these CodeQL docs: …

May 25, 2022 · Configuring CodeQL with Github actions using well known weaknesses Asked 3 years, 11 months ago Modified 3 years, 3 months ago Viewed 7k times