5.5 KiB
title, shortTitle, intro, product, versions, type, topics
| title | shortTitle | intro | product | versions | type | topics | ||||
|---|---|---|---|---|---|---|---|---|---|---|
| Editing your configuration of default setup | Edit default setup | You can edit your existing configuration of default setup for {% data variables.product.prodname_code_scanning %} to better meet your code security needs. | {% data reusables.gated-features.code-scanning %} |
|
how_to |
|
About editing your configuration of default setup
After running an initial analysis of your code with default setup, you may need to make changes to your configuration to better meet your code security needs. For existing configurations of default setup, you can edit{% ifversion code-scanning-without-workflow-310 %}:
- Which languages default setup will analyze.
- {% endif %} The query suite run during analysis. For more information on the available query suites, see "AUTOTITLE."
{% ifversion codeql-model-packs-java %}
If your codebase depends on a library or framework that is not recognized by the standard libraries included with {% data variables.product.prodname_codeql %}, you can also extend the {% data variables.product.prodname_codeql %} coverage in default setup using {% data variables.product.prodname_codeql %} model packs. For more information, see "Extending CodeQL coverage with CodeQL model packs in default setup."
{% endif %}
If you need to change any other aspects of your {% data variables.product.prodname_code_scanning %} configuration, consider configuring advanced setup. For more information, see "AUTOTITLE."
{% ifversion code-scanning-without-workflow-310 %}
Customizing your existing configuration of default setup
{% data reusables.repositories.navigate-to-repo %} {% data reusables.repositories.sidebar-settings %} {% data reusables.user-settings.security-analysis %}
- In the "{% data variables.product.prodname_codeql %} analysis" row of the "{% data variables.product.prodname_code_scanning_caps %}" section, select {% octicon "kebab-horizontal" aria-label="Menu" %}, then click {% octicon "gear" aria-hidden="true" %} View {% data variables.product.prodname_codeql %} configuration.
- In the "{% data variables.product.prodname_codeql %} default configuration" window, click {% octicon "pencil" aria-hidden="true" %} Edit.
- Optionally, in the "Languages" section, select or deselect languages for analysis.
- Optionally, in the "Query suites" section, select a different query suite to run against your code.
- To update your configuration, as well as run an initial analysis of your code with the new configuration, click Save changes. All future analyses will use your new configuration.
{% else %}
Changing the selected query suite for your configuration of default setup
{% data reusables.repositories.navigate-to-repo %} {% data reusables.repositories.sidebar-settings %} {% data reusables.user-settings.security-analysis %}
- In the "{% data variables.product.prodname_codeql %} analysis" row of the "{% data variables.product.prodname_code_scanning_caps %}" section, select {% octicon "kebab-horizontal" aria-label="Menu" %}, then click {% octicon "gear" aria-hidden="true" %} View {% data variables.product.prodname_codeql %} configuration.
- In the "Query suites" row of the "{% data variables.product.prodname_codeql %} default configuration" window, select QUERY SUITE {% octicon "triangle-down" aria-hidden="true" %}, then click the new query suite for your {% data variables.product.prodname_code_scanning %} configuration to run.
- To update your configuration of default setup, click Enable {% data variables.product.prodname_codeql %}. {% endif %}
{% ifversion codeql-model-packs-java %}
Extending {% data variables.product.prodname_codeql %} coverage with {% data variables.product.prodname_codeql %} model packs in default setup
{% data reusables.code-scanning.beta-model-packs %}
If you use frameworks and libraries that are not recognized by the standard libraries included with {% data variables.product.prodname_codeql %}, you can model your dependencies and extend {% data variables.product.prodname_code_scanning %} analysis. For more information, see Supported languages and frameworks in the documentation for {% data variables.product.prodname_codeql %}.
For default setup, you need to define the models of your additional dependencies in a {% data variables.product.prodname_codeql %} model pack in your repository. For more information about {% data variables.product.prodname_codeql %} model packs and writing your own, see Using the {% data variables.product.prodname_codeql %} model editor in the {% data variables.product.prodname_codeql %} documentation.
To use {% data variables.product.prodname_codeql %} model packs with default setup, place them in the .github/codeql/extensions directory. They will be automatically detected and used in your {% data variables.product.prodname_code_scanning %} analysis. If you later change your configuration to use advanced setup, any data extensions in the .github/codeql/extensions directory will still be recognized and used.
{% endif %}