Codeql
-
Discover vulnerabilities across a codebase with CodeQL, our industry-leading semantic code analysis engine. CodeQL lets you query code as though it were data. Write a query to find all variants of a vulnerability, eradicating it forever. Then share your query to help others do the same.
- codeql-action
This action runs GitHub’s industry-leading semantic code analysis engine, CodeQL, against a repository’s source code to find security vulnerabilities
- codeql-action
CodeQL is free for research and open source.
- Code Quality @GitLab: determine code quality using Docker image with various tools