メモ
GitHub Code Quality は現在 パブリック プレビュー にあり、変更される可能性があります。 パブリック プレビュー の間、Code Quality は課金されませんが、Code Quality スキャンでは GitHub Actions 分が消費されます。
Overview
GitHub Code Quality helps you ensure your codebase is reliable, maintainable, and efficient. Whether you're building a new feature, reducing technical debt, or reporting on repository health, Code Quality provides actionable insights and automated fixes so you can improve and maintain the code health of your repository efficiently.
Key features and benefits
With Code Quality, you can:
- Identify code quality risks and opportunities in pull requests and through repository scans.
- Review clear explanations for findings and apply one-click Copilot-powered autofixes.
- Use repository dashboards to track reliability and maintainability scores, identify areas needing attention, and prioritize remediation.
- Set up rulesets for pull requests to enforce code quality standards and block changes that do not meet your criteria.
- Easily assign remediation work to Copilot コーディング エージェント, if you have a Copilot license.
Availability and usage costs
GitHub Code Quality is available for organization-owned repositories on GitHub Team and GitHub Enterprise Cloud plans.
GitHub Code Quality won't be billed during public preview. However, Code Quality scans will consume GitHub Actions minutes. See GitHub Code Quality 課金.
メモ
- You don't need a Copilot or a Code Security license to use Code Quality or apply Copilot-powered autofixes.
- During the パブリック プレビュー, an enterprise policy that blocks the use of Code Security by repository owners will also block use of Code Quality. See GitHub Code Quality を企業で使用できるようにする.
Supported languages
Code Quality performs rule-based analysis of the following languages using CodeQL:
- C#
- Go
- Java
- JavaScript
- Python
- Ruby
- TypeScript
Code Quality also performs AI-powered analysis with results displayed separately on the "AI の結果" repository dashboard. Unlike the rule-based CodeQL analysis that scans the entire codebase and pull requests, this AI-powered analysis only examines files recently pushed to the default branch and may identify issues in languages beyond those listed above. For more information, see GitHub Code Quality の責任ある使用.
Understanding where Code Quality findings appear after enablement
Once you enable Code Quality for a repository, you'll see CodeQL scans for:
- Every new pull request opened against the default branch
- All existing pull requests to the default branch when they are updated, triggering a new run of CI tests
- The whole codebase on the default branch at the time and date shown on the "コードの品質" settings page
In addition, you'll see an AI-powered analysis of all recent pushes to the default branch.
Pull request results
When CodeQL finds rule-based problems on pull requests, you'll see comments from the github-code-quality[bot]. Where possible, each comment will include a Copilotの自動修正 suggestion on how to fix the problem. See プルリクエストをマージする前にコード品質に関する指摘を修正すること.
Default branch results
Code Quality findings on the default branch are reported on "コードの品質" pages on the Security tab for the repository:
- 標準の結果 shows the results of CodeQL quality analysis. See リポジトリのコードの品質の向上.
- AI の結果 shows the results of AI-powered analysis of the files most recently pushed to the default branch. See 最近マージされたコードの品質をAIで改善する.
Scan information
Each CodeQL analysis will use GitHub Actions minutes and can be seen on the Actions tab of the repository as a run of the dynamic "コード品質" workflow.
Next steps
- Enable Code Quality for your repository, see GitHub Code Qualityの有効化. Enterprise owners may need to first update their Advanced Security policies, see GitHub Code Quality を企業で使用できるようにする
- See how GitHub Code Quality works on your default branch to surface code quality issues and help you understand your repository's code health at a glance. See GitHub コード品質 のクイックスタートガイド.