Microsoft Azure

GitHub Advanced Security

GH-500

Prepare for the GH-500 exam to validate your knowledge in GitHub Advanced Security.

141 questions 0 views Free
Start Mock Test Timed · Full-length · Scored

Questions 111–120 of 141

Q111

What happens when you enable Push Protection in GitHub?

  • A Automatically merges pull requests
  • B Excludes sensitive data from commits
  • C Prevents sensitive data from being pushed
  • D Logs all commit history
Explanation Push Protection prevents secrets and sensitive data from being pushed to the repository, while the other options describe unrelated functionalities.
Q112

Which service can automatically scan code for vulnerabilities?

  • A GitHub Advanced Security
  • B Azure DevOps
  • C Azure Monitor
  • D Azure Storage
Explanation GitHub Advanced Security includes features for automatically scanning code for vulnerabilities; the others do not focus on code scanning.
Q113

A company needs to enforce least privilege for its Azure resources. Which Azure feature should they implement?

  • A Resource Locks
  • B Role-Based Access Control
  • C Azure Functions
  • D Virtual Networks
Explanation Role-Based Access Control (RBAC) allows for enforcing least privilege by assigning roles; other options do not focus on access control.
Q114

What happens when you change a repository's visibility to private in GitHub?

  • A All forks are deleted
  • B Public issues are removed
  • C Only admins can access
  • D API keys become invalid
Explanation Changing visibility to private restricts access to admins and selected users; forks and issues remain unaffected.
Q115

Which service facilitates secret management in Azure?

  • A Azure Key Vault
  • B Azure Blob Storage
  • C Azure Monitor
  • D Azure App Service
Explanation Azure Key Vault is designed for managing secrets, while the other options serve different purposes.
Q116

A company needs to ensure only authorized users can push code to their GitHub repository. Which feature should they enable?

  • A Branch protection rules
  • B Issue tracking
  • C Collaborator invitations
  • D Repository archive
Explanation Branch protection rules restrict who can push changes, while the others do not provide access control.
Q117

You are configuring Code Scanning for your repository. What happens when a security vulnerability is detected during a CI/CD pipeline execution?

  • A Build fails immediately
  • B Notification sent only
  • C Build continues as normal
  • D Vulnerability ignored by default
Explanation The build fails immediately to maintain security, while the others do not provide appropriate responses to vulnerabilities.
Q118

Which service provides vulnerability scanning for dependencies?

  • A GitHub Dependency Graph
  • B GitHub Actions
  • C Azure Container Registry
  • D Azure Monitor
Explanation GitHub Dependency Graph scans repositories for vulnerabilities, while others do not serve this specific purpose.
Q119

A company needs to enforce consistent code quality checks on all pull requests. What should they implement?

  • A Robots.txt
  • B Branch policies
  • C Code snippets
  • D Markdown templates
Explanation Branch policies automate checks, unlike the options which do not enforce consistent checks.
Q120

You are configuring GitHub Advanced Security for a public repository. What happens if a sensitive file is detected?

  • A File is automatically deleted
  • B Notification is sent to repo owner
  • C File is moved to a private repo
  • D Sensitive data is anonymized
Explanation A notification is sent to alert the owner; other options are not standard behaviors in this scenario.