C
Christophe David
GitHub code scanning helps you review and prioritize vulnerabilities during your code review process, in your development workflow. You don’t systematically have to switch context for your reviews anymore.
Code scanning is free for public projects or available as a paid option for your private repos with GitHub's Advanced Security package. The feature is also available in GitHub Enterprise.
To access the code scanning alerts, you have two options:
  • At the repository level, click on the ‘Security’ tab, and ‘View alerts’.
  • In your pull request, click on the ‘Checks’ tab, ‘Code scanning results’, and select ‘Socket’
Created by Feross Aboukhadijeh (Socket)
August 22, 2022