Microsoft Azure

GitHub Advanced Security

GH-500

Prepare for the GH-500 exam to validate your knowledge in GitHub Advanced Security.

141 questions 0 views Free
Start Mock Test Timed · Full-length · Scored

Questions 101–110 of 141

Q101

A company needs to enforce branch protection rules on a repository. What should they configure?

  • A Repository Visibility
  • B Collaborator Permissions
  • C Branch Protection Rules
  • D Commit Signing
Explanation Branch Protection Rules directly control branch access and requirements.
Q102

What happens when you perform a GitHub Actions build with insufficient resource limits?

  • A The build completes successfully.
  • B The build fails immediately.
  • C The build runs indefinitely.
  • D The build may be canceled or fail.
Explanation Resource limits can lead to cancelation or failures due to lack of resources.
Q103

Which GitHub Actions feature allows for secret management?

  • A Environment Variables
  • B Secrets
  • C Workflow Logs
  • D Artifacts
Explanation Secrets allows secure storage of sensitive data, while others serve different roles.
Q104

A company needs to automate code scanning for security vulnerabilities. Which GitHub feature should they use?

  • A Dependabot
  • B CodeQL
  • C Projects
  • D Issues
Explanation CodeQL performs code analysis for vulnerabilities, unlike the other options.
Q105

What happens when you set a pull request review requirement on a branch?

  • A Automatic merge
  • B Merge block until approval
  • C Fast-forward default merge
  • D Revert all changes
Explanation This ensures reviews are mandatory before merging, which others do not enforce.
Q106

Which service provides automated policy enforcement for security configurations?

  • A Azure Security Center
  • B Azure Logic Apps
  • C Azure DevOps
  • D Azure Functions
Explanation Azure Security Center automates security policy enforcement, while others serve different primary functions.
Q107

A company needs to scan their GitHub repositories for vulnerabilities on code commits. Which tool should they implement?

  • A Dependabot
  • B GitHub Actions
  • C GitHub Issues
  • D GitHub Pages
Explanation Dependabot scans for vulnerabilities, unlike the other choices which serve different purposes.
Q108

What happens when you enable GitHub Advanced Security on a private repository?

  • A Public visibility is granted
  • B Security alerts become accessible to all
  • C Static analysis happens automatically
  • D All code is encrypted
Explanation Enabling it triggers automatic security scanning, while the other options do not relate to this feature.
Q109

Which service integrates GitHub Actions for CI/CD automatically?

  • A GitHub Flow
  • B GitHub Codespaces
  • C GitHub Dependabot
  • D GitHub Actions
Explanation GitHub Actions is the service that automates CI/CD workflows, while the other options do not provide this functionality.
Q110

A company needs to identify sensitive data in their repositories. What should they configure?

  • A Branch Protection Rules
  • B Secret Scanning
  • C Pull Request Reviews
  • D GitHub Pages
Explanation Secret Scanning is used for detecting sensitive data in code, whereas the others focus on different repository management tasks.