GitHub CodeQL: Semantic Code Query & Vulnerability Analysis

CodeQL transforms code into a relational data representation enabling powerful queries to detect vulnerability patterns and variants.

Core Features

• Semantic Dataflow Queries: Track taint sources → sinks.
• Extensive Standard Query Packs: OWASP, CWE coverage.
• Variant Analysis: Reuse queries across repos / ecosystems.
• CI Integration: Automated PR scanning & alerting.

Security & Testing Use Cases

• Continuous SAST in CI/CD pipelines.
• Post-incident hunting for similar flaw classes.

Integrations

• GitHub Advanced Security (Actions, code scanning alerts), CLI.

Adoption Indicators

• Widely used in open source & MS internal codebases; free for public repos.

Best For

• Security engineering teams enforcing secure SDLC policies.

Back to top ↑

---

Last built with the static site tool.