Is CodeQL worth the price?
8/10
CodeQL is best-in-class for code security scanning.
Free for open source, reasonable for private repos.
Pricing Plans
30-day Free TrialMost Popular
Free (Public repos)
Free
Open source
- Full CodeQL scanning
- Public repositories
- Community support
- Research use
Code Security
$30/month per committer
Private repos
- CodeQL scanning
- Secret scanning
- Dependency review
- Security alerts
Secret Protection
$19/month per committer
Add-on
- Push protection
- Custom patterns
- Alert notifications
Hidden Costs & Gotchas
Per-committer pricing can scale quickly
Requires GitHub Enterprise for some features
Which Plan Do You Need?
Security-conscious teams
Code quality
Vulnerability detection
Compliance needs
Our Recommendation
startup
Free for public repos. Budget $30-49/committer for private.
enterprise
Bundle with GitHub Enterprise for discounts.
How CodeQL Compares to Competitors
SonarQube cheaper for code quality. Snyk similar for security. CodeQL best integration with GitHub.
