We have enhanced the metrics displayed on the security overview dashboard for CodeQL alerts fixed with Copilot autofixes.

This improvement specifically refines how we calculate how much of an autofix suggestion was used to remediate CodeQL alerts detected in pull requests and in scans of the default branch. This provides more accurate metrics on the “CodeQL pull request insights” dashboard and security overview Remediation tab, giving you better insight into how Copilot Autofix helps prevent new vulnerabilities from being merged into your code and helps reduce the security debt on your default branches.

Screenshot of table showing CodeQL pull request alerts fixed with Copilot autofixes on the security overview dashboard

This change will retroactively affect dashboard metrics related to CodeQL alerts detected in pull requests and on a repository’s default branch that were fixed using autofix suggestions. The “Alerts fixed with autofix suggestions” and “Percentage of remediated alerts with autofix suggestion” will be sequentially recalculated over the next 10 days, and changes in these values are expected.

This update is now generally available on GitHub Enterprise Cloud.

Learn more by checking out our security overview documentation and our code scanning documentation.