Security and code quality documentation
Build security and code quality into your GitHub workflow to secure your software supply chain, prevent data leaks, and automatically find and fix vulnerabilities and code health issues in your codebase.
Recommended
Quickstart for securing your repository
Manage access to your code. Find and fix vulnerable code and dependencies automatically.
GitHub security features
An overview of GitHub's security features.
Planning a trial of GitHub Advanced Security
Learn how to prepare for a successful trial of Advanced Security.
Articles
"Out of disk" and "Out of memory" errors
If you see one of these errors with GitHub Actions, you can try alternative runners.
A repository is using advanced setup for code scanning
You see an error when you try to attach a security configuration with default code scanning enabled to repositories that use advanced setup for code scanning.
About built-in CodeQL queries
Learn about the CodeQL queries that code scanning uses to analyze code.
About bypass requests for push protection
Learn how bypass requests work when push protection blocks commits containing secrets.
About code scanning
You can use code scanning to find security vulnerabilities and errors in the code for your project on GitHub.
About code scanning alerts
Learn about the different types of code scanning alerts and the information that helps you understand the problem each alert highlights.
About code scanning with CodeQL
You can use CodeQL to identify vulnerabilities and errors in your code. The results are shown as code scanning alerts in GitHub.
About CodeQL code scanning for compiled languages
Understand how CodeQL analyzes compiled languages, the build options available, and learn how you can customize the database generation process if you need to.
About CodeQL for VS Code
You can write, run, and test CodeQL queries inside Visual Studio Code with the CodeQL extension.
Showing 1-9 of 427