Azure DevOps PR annotations is not showing for github adavanced security

Question

Azure DevOps PR annotations is not showing for github adavanced security

ahd 210

After enabling GitHub advanced security the analysis results are getting posted on Advanced security plane but no PR annotations are posted for Pull requests. Is any additional settings required in pipeline or settings ? User's image

Accepted answer

0 additional answers

Your answer

Answer 1

Durga Reshma Malthi 4,430 Microsoft External Staff Moderator

Hi ahd

Could you please follow the below steps to resolve this issue:

Ensure the workflow includes the pull request trigger:
```
   on:
     pull_request:
       branches:
         - main
```
If this trigger is missing, GitHub won’t annotate PRs.
Go to your Repository -> Security -> Code scanning alerts -> Click on setup code scanning -> select codeql analysis. This ensures CodeQL runs whenever a PR is created.
Add the following permissions to your workflow, this allows CodeQL to post annotations on PRs.
```
   permissions:
     contents: read
     security-events: write
```

Hope this helps!

Please Let me know if you have any queries.

Durga Reshma Malthi 4,430 Reputation points Microsoft External Staff Moderator

2025-06-05T07:42:26.1433333+00:00

Hi ahd

Just checking in to see if you had a chance to review the response provided to your question.

Feel free to reach out if you have any further queries.

If you found the information helpful, please click "Upvote" on the post to let us know and consider accepting the answer as the token of appreciation. Thank You.

Share via

Azure DevOps PR annotations is not showing for github adavanced security

0 additional answers

Your answer