Hi @marconiv

At the moment, GitHub’s native code scanning tools (like CodeQL) do not officially support Delphi (Object Pascal) for security vulnerability detection.

🔍 What is currently supported?

According to the GitHub Docs on Code Scanning, the officially supported languages for CodeQL include:

• JavaScript / TypeScript
• Python
• Java / Kotlin
• C / C++
• C#
• Go
• Ruby
• Swift

Unfortunately, Delphi/Object Pascal is not on the supported list, and there has been no public announcement or timeline from GitHub regarding future support for Delphi.

✅ Workarounds and Suggestions

If you're working with Delphi and want to perform security analysis, here are some alternatives:

• External Static Analysis Tools: Tools like Peganza Pascal Analyzer or FixInsight can be used outside of GitHub to detect common issues.
• Custom Actions: You can set up a GitHub Action to run these tools as part of your CI/CD pipeline.
• Manual Audit: Although less scalable, regular code reviews and security checklists are still helpful.

💡 Feature Request

If Delphi support is important to you, I recommend opening a feature request in the GitHub CodeQL discussion forum so the team can consider community demand.

Best regards. 🎉