Concepts for CodeQL
Understand the core concepts behind CodeQL and how it helps you find vulnerabilities and errors in your code.
About code scanning with CodeQL
You can use CodeQL to identify vulnerabilities and errors in your code. The results are shown as code scanning alerts in GitHub.
CodeQL query suites
You can choose from different built-in CodeQL query suites to use in your CodeQL code scanning setup.
About the CodeQL CLI
You can use the CodeQL CLI to run CodeQL processes locally on software projects or to generate code scanning results for upload to GitHub.
About CodeQL for VS Code
You can write, run, and test CodeQL queries inside Visual Studio Code with the CodeQL extension.
About CodeQL workspaces
CodeQL workspaces allow you to develop and maintain a group of CodeQL packs that depend on each other.
Query reference files
You can use query reference files to define the location of a query you want to run in tests.