CodeQL documentation

CodeQL 2.12.7 (2023-04-18)

This is an overview of changes in the CodeQL CLI and relevant CodeQL query and library packs. For additional updates on changes to the CodeQL code scanning experience, check out the code scanning section on the GitHub blog, relevant GitHub Changelog updates, changes in the CodeQL extension for Visual Studio Code, and the CodeQL Action changelog.

Security Coverage

CodeQL 2.12.7 runs a total of 386 security queries when configured with the Default suite (covering 154 CWE). The Extended suite enables an additional 124 queries (covering 31 more CWE).


Bug Fixes

  • Fixed a bug in codeql database upload-results where the subcommand would fail with “A fatal error occurred: Invalid SARIF.”, reporting an InvalidDefinitionException. This issue occurred when the SARIF file contained certain kinds of diagnostic information.
  • © GitHub, Inc.
  • Terms
  • Privacy