Автофикс второго пилота is an expansion of code scanning that provides you with targeted recommendations to help you fix code scanning alerts so you can avoid introducing new security vulnerabilities. The potential fixes are generated automatically by large language models (LLMs) using data from the codebase and from code scanning analysis.
How Автофикс второго пилота works
Автофикс второго пилота translates the description and location of an alert into code changes that may fix the alert. It interfaces with the large language model ГПТ-5.1 from OpenAI, which has sufficient generative capabilities to produce both suggested fixes in code and explanatory text for those fixes.
Enabling and managing Автофикс второго пилота
You do not need a subscription to GitHub Copilot to use Автофикс GitHub Copilot. Автофикс второго пилота is available to all public repositories on GitHub.com, as well as internal or private repositories owned by organizations and enterprises that have a license for GitHub Code Security.
Автофикс второго пилота is allowed by default and enabled for every repository that uses CodeQL, regardless of whether it uses default or advanced setup for code scanning. There is no separate step to enable Автофикс второго пилота: enabling code scanning with CodeQL is sufficient. See Настройка настройки по умолчанию для сканирования кода.
Administrators at the enterprise, organization, and repository levels can choose to disable Автофикс второго пилота. If Автофикс второго пилота has been disabled at your level, you can re-enable it by following the same steps used to disable it and selecting the option to allow Автофикс второго пилота. To learn how to manage Автофикс второго пилота at each level, see Отключение автоисправления Copilot для оповещений системы безопасности code scanning.