CodeQL toolsΒΆ
GitHub provides the CodeQL command-line interface and CodeQL for Visual Studio Code for performing CodeQL analysis on open source codebases.
CodeQL command-line interfaceΒΆ
The CodeQL command-line interface (CLI) is primarily used to create databases for security research. You can also query CodeQL databases directly from the command line or using the Visual Studio Code extension. The CodeQL CLI can be downloaded from GitHub releases. For more information, see βCodeQL CLIβ and the CLI changelog.
CodeQL packsΒΆ
The standard CodeQL query and library packs (source) maintained by GitHub are:
codeql/cpp-queries(changelog, source)codeql/cpp-all(changelog, source)codeql/csharp-queries(changelog, source)codeql/csharp-all(changelog, source)codeql/go-queries(changelog, source)codeql/go-all(changelog, source)codeql/java-queries(changelog, source)codeql/java-all(changelog, source)codeql/javascript-queries(changelog, source)codeql/javascript-all(changelog, source)codeql/python-queries(changelog, source)codeql/python-all(changelog, source)codeql/ruby-queries(changelog, source)codeql/ruby-all(changelog, source)
For more information, see βAbout CodeQL packs.β
CodeQL bundleΒΆ
The CodeQL bundle consists of the CodeQL CLI together with the standard CodeQL query and library packs maintained by GitHub. The bundle can be downloaded from GitHub releases. Use this when running code scanning with CodeQL on GitHub Actions or in another CI system.
CodeQL for Visual Studio CodeΒΆ
You can analyze CodeQL databases in Visual Studio Code using the CodeQL extension, which provides an enhanced environment for writing and running custom queries and viewing the results. For more information, see βCodeQL for Visual Studio Code.β