GH-500 - Configure and use Code Security - Section 4.1
Choose between CodeQL and third-party analysis tools, and use SARIF file ingestion, management, and interoperability.
Choose between CodeQL and third-party code scanning tools based on language support and analysis requirements. Understand how SARIF files are ingested into GitHub code scanning to display third-party tool results alongside native CodeQL findings.
CodeQLthird-party code scanningSARIFcode scanning
More in this domain
Back to all Configure and use Code Security objectives, or the GH-500 cert hub.
Examworthy is not affiliated with or endorsed by GitHub. Original, blueprint-aligned practice material only.