Swift security analysis support in CodeQL code scanning (beta) #206
Labels
codeql
Feature: GitHub codeql
GitHub Advanced Security (GHAS)
Product SKU: GitHub Advanced Security
preview
Feature phase: Preview
server
Available on Server
shipped
Shipped
Comments
github-product-roadmap
added
ae
preview
github-product-roadmap
removed
security & compliance
code scanning
|
🚢 This has shipped: https://github.blog/changelog/2023-06-01-codeql-code-scanning-now-supports-swift-beta! Leaving open to track for GHES release. |
|
This has shipped with GHES 3.10: https://github.blog/2023-08-29-github-enterprise-server-3-10-is-now-generally-available/ |
Sign up for free
to subscribe to this conversation on GitHub.
Already have an account?
Sign in.
Summary
CodeQL is the analysis engine that provides the vast majority of our code scanning results. We're planning to add Swift code analysis support in public beta.
Intended Outcome
Looking at language popularity data on GitHub.com, Swift is a very popular language both within the open source community and with our enterprise customers — mostly for creating mobile apps for iOS. Building Swift support for CodeQL means that we'll be able to flag up security alerts in your Swift codebases.
How will it work?
Analyzing Swift codebases with CodeQL in code scanning will work much the same as scanning other source code in languages that we already support. After you've set up CodeQL analysis in an Actions workflow on a Swift repository, the analysis job will be triggered as configured. As soon as the analysis is finished, the CodeQL results will then become visible to you in the "Security" tab and on pull requests.
The text was updated successfully, but these errors were encountered: