codeql
CodeQL workshops for GitHub Universe (by githubuniverseworkshops)
codeql-action
Actions for running CodeQL analysis (by github)
| codeql | codeql-action | |
|---|---|---|
| 1 | 4 | |
| 92 | 1,242 | |
| - | 2.4% | |
| 0.0 | 9.9 | |
| over 2 years ago | 6 days ago | |
| CodeQL | TypeScript | |
| MIT License | MIT License |
The number of mentions indicates the total number of mentions that we've tracked plus the number of user suggested alternatives.
Stars - the number of stars that a project has on GitHub. Growth - month over month growth in stars.
Activity is a relative number indicating how actively a project is being developed. Recent commits have higher weight than older ones.
For example, an activity of 9.0 indicates that a project is amongst the top 10% of the most actively developed projects that we are tracking.
Stars - the number of stars that a project has on GitHub. Growth - month over month growth in stars.
Activity is a relative number indicating how actively a project is being developed. Recent commits have higher weight than older ones.
For example, an activity of 9.0 indicates that a project is amongst the top 10% of the most actively developed projects that we are tracking.
codeql
Posts with mentions or reviews of codeql.
We have used some of these posts to build our list of alternatives
and similar projects. The last one was on 2022-07-14.
-
Finding security vulnerabilities in JavaScript with Github's CodeQL & Code Scanning
Github workshop repo
codeql-action
Posts with mentions or reviews of codeql-action.
We have used some of these posts to build our list of alternatives
and similar projects. The last one was on 2022-05-09.
-
🛡️ This is how we maintain & release Secured Software on Github 🤖
codeql-action
-
Preview Pull Requests and Automated CI/CD
My second workflow it to lint, test and build docker of Python Server, It runs on the same condition as of client with commit containing changes to the code of Python Server. It setup python, installs dependencies of the server and lints and tests the code. On successful completion of the first job second job is to build and release the Docker Image. If the event is Pull Request then it leaves a comment on PR. There is one other job that performs code analysis with github/codeql-action.
-
TypeScript GitHub Action template
Security tests using Snyk and CodeQL.
-
I Tested These GitHub Apps So You Don't Have To
CodeQL by GitHub
What are some alternatives?
When comparing codeql and codeql-action you can also consider the following projects:
go-ruleguard - Define and run pattern-based custom linting rules.
maven-simple - Example Maven project demonstrating the use of
codeql - GitHub Satellite 2020 workshops on finding security vulnerabilities with CodeQL for Java/JavaScript.
typescript-action - Create a TypeScript Action with tests, linting, workflow, publishing, and versioning
codeql-coding-standards - This repository contains CodeQL queries and libraries which support various Coding Standards.
statoscope - Statoscope is a toolkit to analyze and validate webpack bundle