Summary
In this module, you learned how to install the CodeQL CLI, set up a database for CodeQL, and run a CodeQL analysis in a database. You learned about the QL language, uploading SARIF files, and the requirements for tools to upload SARIF results. You also reviewed information about CodeQL scan results and the alerts in the code-scanning console. Finally, the module discussed how to troubleshoot common problems for CodeQL and the QL language.
Learn more
Here are some links to more information on CodeQL:
- CodeQL documentation
- CodeQL repository
- Upload an analysis as SARIF data
- Managing code scanning alerts for your repository
- Defining the alert severities that cause a check failure for a pull request