Question 086

### When a CodeQL analysis GitHub Actions workflow detects a new vulnerability on a pull request, where can you find the information about that vulnerability? > https://docs.github.com/en/code-security/code-scanning/managing-code-scanning-alerts/triaging-code-scanning-alerts-in-pull-requests#about-code-scanning-results-on-pull-requests 1. [x] Directly in the pull request in the form of a PR comment and a check failure 1. [ ] In the security tab of the repository 1. [ ] In the workflow run logs 1. [ ] The CodeQL analysis workflow will fail and produce an artifact with the results