Scan from the command line

To get started with the CodeQL CLI, you need to download and set up the CLI so that it can access the tools and libraries required to create and analyze databases.

You can write your own CodeQL queries to find specific vulnerabilities and errors.

Share or download a CodeQL pack, then analyze your CodeQL database.

Verify your custom CodeQL queries and catch breaking changes before they affect your code scanning results following new releases of the CodeQL CLI.

Ensure your CodeQL query help files are valid by previewing them as Markdown.

Expand the coverage of the CodeQL CLI by adding ready-made databases.

Set up the CodeQL CLI directly from the source code.

Save time by adding your frequently used command options and custom CodeQL packs to a CodeQL configuration file.

Create a database bundle with CodeQL troubleshooting information.