# Find and fix code vulnerabilities

Identify vulnerabilities in your code by configuring and managing code scanning.

## Links

* [Configure code scanning](/en/code-security/how-tos/find-and-fix-code-vulnerabilities/configure-code-scanning)

  Configure code scanning for your repositories by choosing between default or advanced setup and customizing advanced settings as needed.

* [Manage your configuration](/en/code-security/how-tos/find-and-fix-code-vulnerabilities/manage-your-configuration)

  Manage and refine your code scanning configuration by monitoring tool status, updating default setup settings, and enforcing protections as your needs evolve.

* [Scan from the command line](/en/code-security/how-tos/find-and-fix-code-vulnerabilities/scan-from-the-command-line)

  Run code scanning from the command line using the CodeQL CLI to configure scans, customize queries, and troubleshoot results.

* [Scan from VS Code](/en/code-security/how-tos/find-and-fix-code-vulnerabilities/scan-from-vs-code)

  Scan and analyze code from Visual Studio Code using CodeQL to write, test, and run queries, explore code structure, and manage databases and packs.

* [Integrate with existing tools](/en/code-security/how-tos/find-and-fix-code-vulnerabilities/integrate-with-existing-tools)

  Integrate code scanning with your existing tools and workflows by running scans in your CI system or uploading results to GitHub using Static Analysis Results Interchange Format (SARIF).