About built-in CodeQL queries

Learn about the CodeQL queries that code scanning uses to analyze code.

Who can use this feature?

Code scanning is available for the following repository types:

Public repositories on GitHub.com
Organization-owned repositories on GitHub Team, GitHub Enterprise Cloud, or GitHub Enterprise Server, with GitHub Code Security enabled.

About built-in queries for CodeQL analysis

For each language, the following articles list which queries are included in the default and the security-extended suites. Where Copilot Autofix is available for a language, details of which queries are supported are also included.

GitHub Actions queries for CodeQL analysis
C and C++ queries for CodeQL analysis
C# queries for CodeQL analysis
Go queries for CodeQL analysis
Java and Kotlin queries for CodeQL analysis
JavaScript and TypeScript queries for CodeQL analysis
Python queries for CodeQL analysis
Ruby queries for CodeQL analysis
Rust queries for CodeQL analysis
Swift queries for CodeQL analysis

For more information about CodeQL query suites, see CodeQL query suites.