CodeQL 2.15.3 is rolling out to users of GitHub code scanning on github.com this week, and all new functionality will also be included in GHES 3.12. Users of GHES 3.11 or older can upgrade their CodeQL version.
Important changes in this release include:
- CodeQL now runs more than 400 security checks across all supported languages when configured with the Default suite, 10% more compared to a year ago
- CIL extraction for C# code bases is now disabled by default, which improves query execution time for C# CodeQL databases by up to 25%
- Swift code bases using Swift 5.9.1 can now be analyzed using CodeQL, and two new security queries have been added
- We’ve also improved the depth and quality of existing queries
For a full list of changes, please refer to the complete changelog for version 2.15.3.