Microsoft GH-500 - GitHub Advanced Security Exam
Page: 1 / 15
Total 75 questions
Question #1 (Topic: Topic 1, Describe the GHAS security features and functionality
)
A secret scanning alert should be closed as “used in tests” when a secret is:
A. in a test file.
B. solely used for tests.
C. in the readme.md file.
D. not a secret in the production environment.
Answer: B
Question #2 (Topic: Topic 1, Describe the GHAS security features and functionality
)
What happens when you enable secret scanning on a private repository?
A. Repository administrators can view Dependabot alerts.
B. Dependency review, secret scanning, and code scanning are enabled.
C. Your team is subscribed to security alerts.
D. GitHub performs a read-only analysis on the repository.
Answer: A
Question #3 (Topic: Topic 1, Describe the GHAS security features and functionality
)
Which of the following statements best describes secret scanning push protection?
A. Buttons for sensitive actions in the GitHub UI are disabled.
B. Commits that contain secrets are blocked before code is added to the repository.
C. Users need to reply to a 2FA challenge before any push events.
D. Secret scanning alerts must be closed before a branch can be merged into the repository.
Answer: B
Question #4 (Topic: Topic 1, Describe the GHAS security features and functionality
)
What is a security policy?
A. a security alert issued to a community in response to a vulnerability
B. a file in a GitHub repository that provides instructions to users about how to report a security vulnerability
C. an alert about dependencies that are known to contain security vulnerabilities
D. an automatic detection of security vulnerabilities and coding errors in new or modified code
Answer: B
Question #5 (Topic: Topic 1, Describe the GHAS security features and functionality
)
Which of the following information can be found in a repository’s Security tab?
A. number of alerts per GHAS feature
B. GHAS settings
C. access management
D. two-factor authentication (2FA) options
Answer: A
