Question 1

What is the purpose of creating a CodeQL database?

Options :

A : To archive older versions of the code

B : To manage access permissions to the code

C : To store query results

D : To facilitate semantic analysis of code

Answer: D

Question 2

In customizing CodeQL for code scanning, what aspect can be adjusted?

Options :

A : The programming language of the repository

B : The frequency of security updates

C : The types of queries used

D : The version of the CodeQL engine

Answer: C

Question 3

You are managing code scanning alerts for your repository. You receive an alert highlighting a problem with data flow. What do you click for additional context on the alert?

Options :

A : Show paths

B : Security

C : Code scanning alerts

Answer: A

Question 4

Which aspect is crucial for the effectiveness of CodeQL analysis?

Options :

A : The number of contributors in the repository

B : The frequency of code updates

C : The comprehensiveness of the query suite

D : The size of the codebase

Answer: C

Question 5

Which of these is a recommended practice for managing sensitive data in GitHub?

Options :

A : Regularly pushing sensitive data to private branches

B : Using git-secrets or similar tools to prevent accidental commits of sensitive data

C : Storing all sensitive data in a separate repository

D : Encrypting sensitive data before pushing to GitHub

Answer: B