Allison shares an update about enhanced Copilot Autofix usage metrics on the GitHub security overview dashboard, improving clarity for developers and security teams.

Enhanced Copilot Autofix Metrics for CodeQL Security Overview on GitHub

GitHub has refined the security overview dashboard metrics to provide developers and security teams with more accurate insights into how Copilot Autofix suggestions remediate CodeQL alerts. This update affects both pull request scans and default branch analyses, improving the calculation of how much of a Copilot autofix was incorporated to resolve security issues.

What Changed?

  • Metric Improvements: The dashboard now more precisely measures the percentage and number of CodeQL alerts fixed using Copilot Autofix.
  • Affected Areas: Applies retroactively to alerts detected in pull requests and scans of default branches, recalculating “Alerts fixed with autofix suggestions” and “Percentage of remediated alerts with autofix suggestion”.
  • Visibility: Developers gain better insight into how Copilot Autofix prevents vulnerabilities from being merged and helps reduce long-term security debt.

Impact

  • Security Overview Dashboard: The Remediation tab and CodeQL pull request insights will be updated over the next 10 days, with expected changes in related metrics.
  • Actionable Data: Organizations can assess Copilot’s security contributions more reliably at the repository level.

Availability

These enhanced metrics are available now on GitHub Enterprise Cloud.

Further Reading

Screenshot

Screenshot of table showing CodeQL pull request alerts fixed with Copilot autofixes on the security overview dashboard

This post appeared first on “The GitHub Blog”. Read the entire article here