GitHub Updates its Code Scanning API

The GitHub Code Scanning API, a service that is available for all public repositories and private repositories with advanced security enabled, has recently been updated. These updates provide access to more robust code data and alert statuses.

The updated API will now return additional status information when uploading a SARIF (Static Analysis Results Interchange Format) file, including “a pointer to the analyses endpoint for that result.” The API will also now support the ability to export files in SARIF format.

This update also includes a new instances resource that offers detail on “the instances of an alert across many branches in the GET /code-scanning/alerts/:id/instances API.”

To find the full details on these updates make sure to check out the GitHub Blog post