Microsoft Azure

GitHub Advanced Security

GH-500

Prepare for the GH-500 exam to validate your knowledge in GitHub Advanced Security.

141 questions 0 views Free
Start Mock Test Timed · Full-length · Scored

Questions 121–130 of 141

Q121

Which service primarily helps in scanning dependencies for vulnerabilities?

  • A GitHub Dependabot
  • B GitGuard
  • C Azure DevOps
  • D Microsoft Sentinel
Explanation GitHub Dependabot scans for vulnerabilities in dependencies, while the others focus on different aspects of security or CI/CD.
Q122

A company needs to ensure that its repository complies with specific policies. What should they use?

  • A Branch Protection Rules
  • B Actions Workflow
  • C Vulnerability Alerts
  • D Secrets Store
Explanation Branch Protection Rules ensure compliance with specific repository policies, while the others do not enforce such regulations directly.
Q123

What happens when a pull request is created with unapproved changes?

  • A It merges automatically
  • B Triggers a security scan
  • C Gets blocked by rules
  • D Conflicts are resolved automatically
Explanation Pull requests with unapproved changes are blocked by branch protection rules, while the others describe incorrect or overly simplistic behaviors.
Q124

Which service can automatically scan for vulnerabilities in GitHub repositories?

  • A GitHub Advanced Security
  • B Azure Policy
  • C Azure DevOps
  • D GitHub Actions
Explanation GitHub Advanced Security provides automatic vulnerability scanning, while the others focus on different aspects of development or governance.
Q125

A company needs to audit all pull requests for secret leakage. Which feature should they implement?

  • A Secret scanning
  • B Branch protection rules
  • C GitHub Actions
  • D Code reviewers
Explanation Secret scanning proactively identifies sensitive data in pull requests, whereas the other options do not directly address secret leakage.
Q126

What happens when a code owner does not approve a pull request?

  • A Pull request merges automatically
  • B Merge is blocked until approved
  • C Code owners receive a notification only
  • D Approval is ignored by default
Explanation A pull request cannot be merged without approval from designated code owners, ensuring code review compliance.
Q127

Which service provides code scanning for security vulnerabilities?

  • A GitHub Codespaces
  • B GitHub Advanced Security
  • C GitHub Pages
  • D GitHub Discussions
Explanation GitHub Advanced Security includes features for code scanning, while others focus on different functionalities.
Q128

A company needs to enforce security policies on their GitHub repositories. What should they use?

  • A Branch protection rules
  • B Issue templates
  • C Project boards
  • D Labels
Explanation Branch protection rules enforce policies, whereas the others are organizational tools without enforceable security features.
Q129

You are configuring GitHub Actions for continuous deployment. What happens if a secret is accidentally exposed in logs?

  • A It is permanently deleted.
  • B Having an exposed secret revokes access.
  • C The access token remains active.
  • D Logs are automatically purged.
Explanation Exposed secrets do not automatically invalidate the access token; manual revocation is required.
Q130

Which service enables automated security checks on code?

  • A GitHub Advanced Security
  • B Azure Active Directory
  • C Azure DevOps
  • D Azure Functions
Explanation GitHub Advanced Security automates code scanning; others provide unrelated functionalities.