Add Code QL (Code scanning alerts)
coliff opened this issue · comments
Christian Oliff commented
I'm submitting a ...
- bug report
- feature request
- other (Please do not submit support requests here (below))
GitHub has a powerful and easy to setup code scanning alerts which automatically detects common vulnerability and coding errors. I would recommend every open-source project to include it. To setup go to the 'Security' section/tab of the repo, click the 'Set up code scanning' button and then the green 'Configure CodqQL alerts' button to begin the process for adding a .github / workflows / codeql-analysis.yml
config file.
CodeQL currently supports cpp, csharp, go, java, javascript, python and ruby.