- 필수 기능
- 시작하기
- Glossary
- 표준 속성
- Guides
- Agent
- 통합
- 개방형텔레메트리
- 개발자
- Administrator's Guide
- API
- Datadog Mobile App
- CoScreen
- Cloudcraft
- 앱 내
- 서비스 관리
- 인프라스트럭처
- 애플리케이션 성능
- APM
- Continuous Profiler
- 스팬 시각화
- 데이터 스트림 모니터링
- 데이터 작업 모니터링
- 디지털 경험
- 소프트웨어 제공
- 보안
- AI Observability
- 로그 관리
- 관리
Code Analysis integrates with GitHub pull requests in two ways:
Pull request comments to flag violations: During code reviews on GitHub, Datadog can automatically check for Static Analysis violations in pull requests for repositories that have at least one ruleset applied. Violations are flagged with an inline review comment on the relevant line(s) of code, along with suggested fixes (when applicable) that can be applied directly in the pull request. This is only available for Static Analysis (SAST).
Open a pull request to fix an issue directly from Datadog: You can create a pull request from the UI to fix a security vulnerability or code quality issue based on Datadog’s suggested code fix. This is only available for Static Analysis (SAST).
To enable these features, ensure you have the required GitHub permissions (Read & Write) for your repository.
To use Datadog Code Analysis, add the appropriate configuration files to your repository, as described in the setup instructions.
To use Code Analysis on GitHub, you can do one of the following:
The permissions you grant to the GitHub App determine which GitHub integration features are available for setup.
demo-static-analysis-gates
repository.Note: If you are using GitHub Actions to run your scans, trigger the action on push
in order for comments to appear.
If your GitHub app’s Pull Requests permission is set to Read & Write, one-click remediation is enabled for all Static Analysis findings with an available suggested fix.
Follow these steps to fix a vulnerability and open a pull request:
You can also fix a vulnerability by committing directly to the branch the result was found on.
To commit a suggested fix: