diff --git a/.github/codeql.yml b/.github/codeql.yml
new file mode 100644
index 0000000..1d8a969
--- /dev/null
+++ b/.github/codeql.yml
@@ -0,0 +1,48 @@
+paths-ignore:
+  - testsuite
+
+query-filters:
+  - exclude:
+      id: cpp/commented-out-code
+  - exclude:
+      id: cpp/include-non-header
+  - exclude:
+      id: cpp/integer-multiplication-cast-to-long
+  - exclude:
+      id: cpp/missing-header-guard
+  - exclude:
+      id: cpp/short-global-name
+  - exclude:
+      id: cpp/tainted-format-string
+  - exclude:
+      id: cpp/toctou-race-condition
+  - exclude:
+      id: cpp/world-writable-file-creation
+  - exclude:
+      id: cpp/path-injection
+  - exclude:
+      id: cpp/stack-address-escape
+  - exclude:
+      id: cpp/loop-variable-changed
+  - exclude:
+      id: cpp/long-switch
+  - exclude:
+      id: cpp/complex-condition
+  - exclude:
+      id: cpp/complex-block
+  - exclude:
+      id: cpp/poorly-documented-function
+  - exclude:
+      id: cpp/loop-variable-changed
+  - exclude:
+      id: cpp/irregular-enum-init
+  - exclude:
+      id: cpp/user-controlled-bypass
+  - exclude:
+      id: cpp/non-constant-format
+  - exclude:
+      id: cpp/missing-check-scanf
+  - exclude:
+      id: cpp/nested-loops-with-same-variable
+  - exclude:
+      id: cpp/stack-address-escape