CodeQL
SAST/DAST sast
Open Source
GitHub's semantic analysis engine
Platforms:
linux windows macos
Prerequisites:
git github
Pros and Cons
Ventajas
- + Deep semantic analysis
- + Native integration with GitHub
- + Very expressive queries
- + Vulnerability database
- + Free for open-source projects
Desventajas
- - Only for supported languages
- - Requires GitHub Actions or CLI
- - High learning curve
Casos de Uso
- Variant analysis of vulnerabilities
- Security research
- Code audits
- Zero-day detection