diff --git a/.github/codeql/config.yml b/.github/codeql/config.yml
new file mode 100644
index 000000000..72b49ea83
--- /dev/null
+++ b/.github/codeql/config.yml
@@ -0,0 +1,22 @@
+name: "CodeQL Config"
+
+# Queries and the suites they belong to are documented at
+#    https://codeql.github.com/codeql-query-help/cpp/
+
+queries:
+  - uses: security-and-quality
+  # Choose the above from 3 query suites:
+  #   default
+  #      The default set of queries
+  #   security-extended
+  #      `default` suite plus lower severity and precision queries
+  #   security-and-quality
+  #      `security-extended`, plus maintainability and reliability queries
+
+query-filters:
+  - exclude:
+    id:
+      - cpp/use-of-goto
+  - exclude:
+    problem.severity:
+      - recommendation
diff --git a/.github/workflows/codeql.yml b/.github/workflows/codeql.yml
index cebeb0d37..f2ba463e3 100644
--- a/.github/workflows/codeql.yml
+++ b/.github/workflows/codeql.yml
@@ -47,7 +47,7 @@ jobs:
         uses: github/codeql-action/init@v2
         with:
           languages: ${{ matrix.language }}
-          queries: +security-and-quality
+          config-file: ./.github/codeql/config.yml
 
       - name: Build C/C++
         run: |