Cannot enable CodeQL in a private repository

GitHub Advanced Security must be enabled in order to use code scanning on private repositories.

Confirm whether GitHub Advanced Security is enabled

  1. Navigieren Sie auf GitHub zur Hauptseite des Repositorys.

  2. Klicke unter dem Repositorynamen auf Settings. Wenn die Registerkarte „Einstellungen“ nicht angezeigt wird, wähle im Dropdownmenü die Option Einstellungen aus.

    Screenshot eines Repositoryheaders mit den Registerkarten. Die Registerkarte „Einstellungen“ ist dunkelorange umrandet.

  3. Klicke im Abschnitt „Security“ der Randleiste auf Code security.

  4. On the settings page, scroll down to "Advanced Security."

  5. If there is an associated and active Enable button, Advanced Security is available for this repository but not yet enabled.

  6. If use of GitHub Advanced Security is blocked by a policy, the Enable button is inactive and the owner of the policy is listed.

    "Screenshot of the Advanced Security" setting. The enterprise policy owner and the inactive "Enable" button are highlighted in dark orange.

Requesting access to GitHub Advanced Security

  1. In the "Advanced Security" settings, click the enterprise or organization name to display a list of users with access to edit the policy that controls access to GitHub Advanced Security. For more information, see Erzwingen von Richtlinien für die Codesicherheit und -analyse für Unternehmen.
  2. Follow your company's policy for requesting access to additional features.

Enabling GitHub Advanced Security

  1. Open the "Code security" settings page.
  2. Next to the "Advanced Security" feature, click Enable.
  3. Rerun code scanning.