codeql-expert

This is documentation and example queries for CodeQL static analysis. The content is internally consistent with its stated purpose: example queries, installation from GitHub releases, and GitHub Actions integration. There are no runtime backdoors, obfuscated payloads, or network exfiltration in the provided files. The only notable risk is operational: granting the agent Bash(codeql:*, gh:*) privileges and executing queries that flag exec/eval/system requires care in CI or agent environments so those tools cannot be misused. Overall this fragment appears benign for its intended use.