Microsoft Azure

GitHub Advanced Security

GH-500

Prepare for the GH-500 exam to validate your knowledge in GitHub Advanced Security.

141 questions 0 views Free
Start Mock Test Timed · Full-length · Scored

Questions 1–10 of 141

Q1

You are configuring a pull request in Azure DevOps. Which feature ensures only approved reviewers can approve changes?

  • A Branch Policies
  • B Code Analysis
  • C Build UI
  • D Web Hooks
Explanation Branch Policies enforce specific conditions for pull requests, including required reviewer approvals, while the other options do not ensure approval restrictions.
Q2

A company needs to store sensitive information securely in their GitHub repositories. Which feature should they enable?

  • A Secret Scanning
  • B Branch Protection
  • C Codespaces
  • D Discussion Boards
Explanation Secret Scanning identifies and alerts users about sensitive data, while the other features do not specifically target information security.
Q3

What happens when you enable GitHub Advanced Security for your repository?

  • A Automatically approves all pull requests
  • B Detects vulnerabilities in the repository
  • C Eliminates all commits instantly
  • D Disables branch protection rules
Explanation Enabling GitHub Advanced Security allows detection of vulnerabilities, while the other options misrepresent its functions.
Q4

Which service provides static code analysis for vulnerabilities in code repositories?

  • A GitHub Secret Scanning
  • B Dependabot
  • C CodeQL
  • D Azure Container Instances
Explanation CodeQL performs static analysis to identify vulnerabilities; the others serve different purposes.
Q5

A company needs secure branch protection for their GitHub repository. What should they implement?

  • A Manual peer reviews
  • B Branch protection rules
  • C Open merge requests
  • D Enable 2FA
Explanation Branch protection rules enforce policies like required reviews before merging; others are not sufficient.
Q6

You are configuring GitHub Actions to run tests on every pull request. What is crucial to avoid unintended deployments?

  • A Set environment variables
  • B Define job conditions
  • C Create new branches
  • D Increase action timeout
Explanation Defining job conditions prevents deployment unless conditions are met; the others don't prevent unintended actions.
Q7

Which service helps automate security assessments in GitHub?

  • A GitHub Code Scanning
  • B GitHub Actions
  • C GitHub Packages
  • D GitHub Discussions
Explanation GitHub Code Scanning automates security assessments; others are for CI/CD, package management, or community engagement.
Q8

A company needs to prevent secret exposure in GitHub repositories. What should they implement?

  • A Branch protection rules
  • B Secret scanning
  • C Code review process
  • D Issues template
Explanation Secret scanning specifically detects and alerts on sensitive information; other options do not directly address secret exposure.
Q9

You are configuring dependencies for a project in GitHub. What happens if you enable Dependabot alerts?

  • A Automatic pull requests for updates
  • B Alerts for security vulnerabilities
  • C All vulnerabilities are fixed automatically
  • D Code styles are enforced
Explanation Dependabot alerts notify about security vulnerabilities, while the other options are incorrect or misleading.
Q10

Which service provides secret storage in Azure?

  • A Azure Key Vault
  • B Azure Blob Storage
  • C Azure SQL Database
  • D Azure DevOps
Explanation Azure Key Vault is designed for securely managing secrets, while the other options do not specifically provide this function.