Code scanning default setup makes it possible to use security-extended CodeQL query suite across your organization #784
Labels
beta
Feature phase: Beta
cloud
Available on Cloud
code scanning
Feature: Github Code Scanning
dependabot
Feature: GitHub Dependabot
github advanced security
Product SKU: GitHub Advanced Security
secret scanning
Feature: Github Secret Scanning
server
Available on Server
shipped
Shipped
Comments
github-product-roadmap
added
beta
|
🚢 This has shipped: https://github.blog/changelog/2023-07-20-select-a-query-suite-when-enabling-code-scanning-with-default-setup-at-the-organization-level/. Leaving open to track for GHES release. |
|
This shipped with GHES 3.11: https://docs.github.com/en/enterprise-server@3.11/admin/release-notes |
Sign up for free
to subscribe to this conversation on GitHub.
Already have an account?
Sign in.
Summary
At the organization level, you will be able to enhance the security of your repositories by easily choosing the
security-extendedquery suite when enabling code scanning default setup for multiple repositories.Intended Outcome
Enterprises users have requested the ability to enable CodeQL at scale and use the
security-extendedquery suite. Currently, the only way to enable CodeQL with thesecurity-extendedquery suite is at the repository level. This creates a significant workload for users and leads to dissatisfaction with the process.This feature makes that job easier.
How will it work?
With this feature, you will be able choose between the
security-extendedand thedefaultquery suite when enabling repositories at the organization level when using the "enable all" feature or the multi-repo enablement feature on the security coverage page.The text was updated successfully, but these errors were encountered: