Configuring larger runners for default setup

Provisioning enterprise-level executores avançados for default setup

1. Add a executor avançado to your enterprise. For more information, see Gerenciar executores maiores.
   • To add the code-scanning label to your executor avançado, name the runner code-scanning. An enterprise can only have one executor avançado named code-scanning, and that runner will handle all code scanning jobs for all organizations and repositories within your enterprise that:
     • Have access to the enterprise-level runner, and
     • Don't have access to an organization-level executor avançado named code-scanning. If an organization or repository also has access to an organization-level executor avançado named code-scanning, each code scanning job will be randomly assigned to either the organization-level or enterprise-level runner.
2. Para permitir que as organizações acessem seus executor avançado, especifique quais organizações podem podem usar o grupo de executores ao qual o executor está designado. Para saber mais, confira Como controlar o acesso a executores maiores.
3. To analyze repositories with default setup, grant the desired repositories access to the runner group your executor avançado is assigned to. For more information, see Gerenciar executores maiores.
4. You can now configure default setup for your enterprise, organizations, and repositories, and your executor avançado will automatically pick up code scanning jobs as previously specified. For more information on configuring default setup, see Configuring default setup for code scanning and Como definir a configuração padrão da verificação de código em escala.

Provisioning organization-level executores avançados for default setup

1. Add a executor avançado to your organization. See Gerenciar executores maiores.

   • To add a custom label to your executor avançado, give the runner a name that matches that label. You can use this custom label when you configure default setup with executores avançados.

2. By default, all repositories in your organization have access to organization-level runners, meaning every repository can use your executor avançado. For information on granting only select repositories access to a executor avançado, see Gerenciar executores maiores.

3. You can now configure default setup for your organization and repositories, and your executor avançado will automatically pick up code scanning jobs. For more information on configuring default setup, see Configuring default setup for code scanning and Como definir a configuração padrão da verificação de código em escala.

Extra steps for Swift analysis

Currently, Swift analysis is not available on executores avançados for default setup. Additionally, if your repository has access to a runner with the code-scanning label, such as a executor avançado provisioned for default setup, default setup workflows will only use runners labeled code-scanning. If you would like to configure default setup on executores avançados and analyze Swift, you have two options:

• Provision a self-hosted macOS runner with the code-scanning label in addition to your executor avançado. For more information, see Como configurar executores auto-hospedados para a verificação de código em sua empresa.
• Ensure any repositories containing Swift do not have access to runners with the label code-scanning. Default setup workflows for that repository will only use standard runners