| CARVIEW |
Select Language
HTTP/2 302
access-control-allow-origin: *
content-security-policy: default-src 'none';prefetch-src 'self';connect-src 'self';font-src 'self' data:;img-src 'self' github.com *.github.com *.githubusercontent.com *.githubassets.com data: placehold.it;object-src 'self';script-src 'self' github.com *.github.com *.githubusercontent.com *.githubassets.com 'self' data: 'unsafe-inline';script-src-attr 'self';frame-src 'self' github.com *.github.com *.githubusercontent.com *.githubassets.com https://support.github.com https://www.youtube-nocookie.com;frame-ancestors 'self' github.com *.github.com *.githubusercontent.com *.githubassets.com;style-src 'self' github.com *.github.com *.githubusercontent.com *.githubassets.com 'self' 'unsafe-inline' data:;child-src 'self';manifest-src 'self';upgrade-insecure-requests;base-uri 'self';form-action 'self'
cross-origin-opener-policy: same-origin
cross-origin-resource-policy: same-origin
origin-agent-cluster: ?1
referrer-policy: no-referrer-when-downgrade
x-content-type-options: nosniff
x-dns-prefetch-control: off
x-download-options: noopen
x-frame-options: SAMEORIGIN
x-permitted-cross-domain-policies: none
x-xss-protection: 0
cache-control: public, max-age=60
location: /en/rest/code-scanning
content-type: text/plain; charset=utf-8
x-github-backend: Kubernetes
x-github-request-id: 84D8:262602:18C62AA:24904EE:68EC7FFB
accept-ranges: bytes
age: 0
date: Mon, 13 Oct 2025 04:28:43 GMT
via: 1.1 varnish
x-served-by: cache-bom-vanm7210080-BOM
x-cache: MISS
x-cache-hits: 0
x-timer: S1760329723.708531,VS0,VE1164
vary: accept-language, x-user-language, Accept
strict-transport-security: max-age=31557600
content-length: 44
HTTP/2 200
access-control-allow-origin: *
content-security-policy: default-src 'none';prefetch-src 'self';connect-src 'self';font-src 'self' data:;img-src 'self' github.com *.github.com *.githubusercontent.com *.githubassets.com data: placehold.it;object-src 'self';script-src 'self' github.com *.github.com *.githubusercontent.com *.githubassets.com 'self' data: 'unsafe-inline';script-src-attr 'self';frame-src 'self' github.com *.github.com *.githubusercontent.com *.githubassets.com https://support.github.com https://www.youtube-nocookie.com;frame-ancestors 'self' github.com *.github.com *.githubusercontent.com *.githubassets.com;style-src 'self' github.com *.github.com *.githubusercontent.com *.githubassets.com 'self' 'unsafe-inline' data:;child-src 'self';manifest-src 'self';upgrade-insecure-requests;base-uri 'self';form-action 'self'
cross-origin-opener-policy: same-origin
cross-origin-resource-policy: same-origin
origin-agent-cluster: ?1
referrer-policy: no-referrer-when-downgrade
x-content-type-options: nosniff
x-dns-prefetch-control: off
x-download-options: noopen
x-frame-options: SAMEORIGIN
x-permitted-cross-domain-policies: none
x-xss-protection: 0
cache-control: public, max-age=60
x-powered-by: Next.js
content-type: text/html; charset=utf-8
x-github-backend: Kubernetes
x-github-request-id: 1444:1B30A:7B7494:B27758:68EC7FFC
content-encoding: gzip
accept-ranges: bytes
age: 1
date: Mon, 13 Oct 2025 04:28:46 GMT
via: 1.1 varnish
x-served-by: cache-bom-vanm7210080-BOM
x-cache: MISS
x-cache-hits: 0
x-timer: S1760329724.886253,VS0,VE2765
vary: Accept-Encoding
strict-transport-security: max-age=31557600
content-length: 50690
REST API endpoints for code scanning - GitHub Docs
Skip to main content
GitHub Docs
Search or ask Copilot
Select language: current language is English
Search or ask Copilot
Open menu
Open Sidebar
The REST API is now versioned. For more information, see "About API versioning."
REST API endpoints for code scanning
Use the REST API to retrieve and update code scanning alerts from a repository.
- REST API endpoints for code scanning
- List code scanning alerts for an organization
- List code scanning alerts for a repository
- Get a code scanning alert
- Update a code scanning alert
- Get the status of an autofix for a code scanning alert
- Create an autofix for a code scanning alert
- Commit an autofix for a code scanning alert
- List instances of a code scanning alert
- List code scanning analyses for a repository
- Get a code scanning analysis for a repository
- Delete a code scanning analysis from a repository
- List CodeQL databases for a repository
- Get a CodeQL database for a repository
- Delete a CodeQL database
- Create a CodeQL variant analysis
- Get the summary of a CodeQL variant analysis
- Get the analysis status of a repository in a CodeQL variant analysis
- Get a code scanning default setup configuration
- Update a code scanning default setup configuration
- Upload an analysis as SARIF data
- Get information about a SARIF upload