CodeQL pull requests insights on security overview now cover all protected branches

Published: 1 month ago (March 31, 2026 at 08:07 AM EDT)

1 min read

Source: GitHub Changelog

Screen showing a CodeQL pull requests insights on security overview.

What’s new

All nine insight tiles and the CSV file you can download on the CodeQL pull requests insights tab now aggregate data from all protected branches instead of only the default branch.
You’ll see higher, more representative numbers for alerts fixed with Autofix suggestions, reflecting the true impact across all protected branches.
Data is expected to change retrospectively, so you may see larger numbers in your historical data.

Why this matters

Previously, Security Overview only showed CodeQL alert and Autofix statistics for the default branch, which understated Autofix’s value. With data from all protected branches, you’ll get a comprehensive view of how Autofix helps developers resolve GitHub code scanning alerts across your entire codebase.

Learn more about GitHub Copilot Autofix for CodeQL code scanning and the Security Overview.

CodeQL pull requests insights on security overview now cover all protected branches

What’s new

Why this matters

Related posts

Copilot usage metrics now identify active and passive Copilot code review users

Organization runner controls for Copilot cloud agent

GPT-5.1 Codex, GPT-5.1-Codex-Max, and GPT-5.1-Codex-Mini deprecated

Organization firewall settings for Copilot cloud agent