Tag
codeql
Safeguard articles tagged "codeql" — guides, analysis, and best practices for software supply chain and application security.
15 articles
DevSecOps
Semgrep vs CodeQL: SAST Comparison
Compare Semgrep and CodeQL on rule authoring, language coverage, taint analysis, scan time, IDE integration, and pricing to choose the right SAST engine in 2024.
Jul 8, 20245 min read
Tool Comparisons
Semgrep vs CodeQL: Static Analysis for Security Teams
A deep comparison of Semgrep and CodeQL for static application security testing, covering rule writing, performance, language support, and practical deployment considerations.
Feb 18, 20246 min read
Tool Reviews
GitHub Advanced Security: CodeQL, Dependabot, and Secret Scanning in Practice
A review of GitHub Advanced Security covering CodeQL SAST, Dependabot SCA, secret scanning, and how the integrated security experience works for development teams.
Jul 8, 20236 min read