{"meta":{"title":"Find and fix code vulnerabilities","intro":"Identify vulnerabilities in your code by configuring and managing code scanning.","product":"Security and code quality","breadcrumbs":[{"href":"/en/code-security","title":"Security and code quality"},{"href":"/en/code-security/how-tos","title":"How-tos"},{"href":"/en/code-security/how-tos/find-and-fix-code-vulnerabilities","title":"Find and fix code vulnerabilities"}],"documentType":"subcategory"},"body":"# Find and fix code vulnerabilities\n\nIdentify vulnerabilities in your code by configuring and managing code scanning.\n\n## Links\n\n* [Configure code scanning](/en/code-security/how-tos/find-and-fix-code-vulnerabilities/configure-code-scanning)\n\n  Configure code scanning for your repositories by choosing between default or advanced setup and customizing advanced settings as needed.\n\n* [Manage your configuration](/en/code-security/how-tos/find-and-fix-code-vulnerabilities/manage-your-configuration)\n\n  Manage and refine your code scanning configuration by monitoring tool status, updating default setup settings, and enforcing protections as your needs evolve.\n\n* [Scan from the command line](/en/code-security/how-tos/find-and-fix-code-vulnerabilities/scan-from-the-command-line)\n\n  Run code scanning from the command line using the CodeQL CLI to configure scans, customize queries, and troubleshoot results.\n\n* [Scan from VS Code](/en/code-security/how-tos/find-and-fix-code-vulnerabilities/scan-from-vs-code)\n\n  Scan and analyze code from Visual Studio Code using CodeQL to write, test, and run queries, explore code structure, and manage databases and packs.\n\n* [Integrate with existing tools](/en/code-security/how-tos/find-and-fix-code-vulnerabilities/integrate-with-existing-tools)\n\n  Integrate code scanning with your existing tools and workflows by running scans in your CI system or uploading results to GitHub using Static Analysis Results Interchange Format (SARIF)."}