Walker Chabbott

Apr 17, 2023 | github.blog | Walker Chabbott |Kelly Arwine |Dorothy Mitchell |James Fletcher

In January, we launched default setup, a new way to enable code scanning. Default setup has been a game changer, allowing you to enable code scanning on your repository in just a few clicks, without using a .yaml workflow file. We’ve gotten great feedback from the security community, and the numbers speak for themselves. Almost half of all new code scanning implementations now utilize default setup to enable code scanning and 96% of users who try default setup continue to use the feature today.

Mar 30, 2023 | github.blog | Robert Marsh |Walker Chabbott |James Fletcher |Import Cpp

We’ve recently made some changes to CodeQL’s data flow and taint tracking libraries for C++, which will improve the experience for custom query authors and enable better precision in some of our standard queries. While these changes are included in the standard queries already, you can also enable them for custom queries. We’ll show you how in this blog post. CodeQLCodeQL is the static analysis engine behind code scanning.

Mar 10, 2023 | github.blog | Alexander De Michieli |Walker Chabbott |James Fletcher |Griffin Ashe

GitHub Advanced Security (GHAS) is a developer-first application security solution from GitHub. Included in GHAS is the security overview, a dashboard that provides a birds-eye view of your security coverage, as well as the capability to identify and drill down into repositories with the most risk which require more immediate attention.