Skip to content

advanced-security/codeql-extractor-iac

BranchesTags

Repository files navigation

CodeQL IaC Extractor, Libraries, and Queries

GitHub GitHub Actions GitHub Issues GitHub Stars License

Note

This is not an official GitHub project and is not supported by the CodeQL team. This is a community project.

⚠️ Important: As of September 2025, this project no longer supports Bicep or GitHub Actions scanning. Please refer to the documentation for supported languages and frameworks.

🚀 Overview

CodeQL Extractor, Library, and Queries for Infrastructure as Code.

🛠️ Usage

- name: Initialize and Analyze IaC
  uses: advanced-security/[email protected]

Note: See full documentation on Workflows.

📚 Documentation

The documentation for CodeQL IaC extractor can be found here.

Other Useful Links:

📄 License

This project is licensed under the terms of the MIT open source license. Please refer to MIT for the full terms.

To use this project for Infrastructure as Code, you will need to use CodeQL and follow all terms and conditions of the CodeQL License.

For use in private repositories and code, you will need to purchase a GitHub Advanced Security license.

👥 Contributors

Mathew Payne
Mathew Payne
💻 🔬 🚧 🛡️ 🤔		 Arthur Baars
Arthur Baars
💻 🤔 🧑‍🏫		 Edward Minnix III
Edward Minnix III
💻 🎨 🤔		 Joe Farebrother
Joe Farebrother
💻 🎨 🤔		 Viktor Lindström
Viktor Lindström
💻

💬 Support

Support is via GitHub Issues or GitHub Discussions.

About

CodeQL Extractor, Library, and Queries for Infrastructure as Code

Resources

Readme

License

MIT license

Code of conduct

Code of conduct

Contributing

Contributing

Security policy

Security policy
Activity
Custom properties

Stars

53 stars

Watchers

3 watching

Forks

8 forks
Report repository

Releases 9

v0.5.1 Latest
Sep 12, 2025
+ 8 releases

Packages

 
 
 

Contributors 7

Languages