Question 040
### How does CodeQL analyze code in GitHub?
> https://docs.github.com/en/code-security/code-scanning/introduction-to-code-scanning/about-code-scanning-with-codeql#about-codeql
1. [x] It generates a CodeQL database and runs queries to identify problems, displaying results as code scanning alerts
1. [ ] It uses machine learning to predict potential vulnerabilities based on past commits
1. [ ] It performs manual code reviews submitted by GitHub community members
1. [ ] It relies solely on third-party tools for code analysis