Microsoft Azure

GitHub Advanced Security

GH-500

Prepare for the GH-500 exam to validate your knowledge in GitHub Advanced Security.

141 questions 0 views Free
Start Mock Test Timed · Full-length · Scored

Questions 131–140 of 141

Q131

A company needs to find vulnerabilities in open source dependencies. Which tool should they use?

  • A Azure Monitor
  • B GitHub Dependabot
  • C Azure Key Vault
  • D Azure API Management
Explanation GitHub Dependabot identifies vulnerabilities in dependencies; others serve different security purposes.
Q132

You are configuring secret scanning for GitHub repositories. What happens when a secret is detected?

  • A No action is taken automatically
  • B The repository is deleted
  • C An alert is sent
  • D The secret is revoked immediately
Explanation An alert is sent for detected secrets; no other options reflect the behavior of the feature.
Q133

What service provides automated code scanning for vulnerabilities in GitHub repositories?

  • A GitHub Advanced Security
  • B Azure Security Center
  • C GitHub Pages
  • D Azure DevOps
Explanation GitHub Advanced Security offers automated security scanning, while others do not specialize in code scanning.
Q134

A company needs to restrict repository access based on user roles, which feature should they use?

  • A Branch protection rules
  • B GitHub Actions
  • C Role-based access control
  • D Pull requests
Explanation Role-based access control effectively restricts access, while the other options do not primarily manage permissions.
Q135

What happens when a code scan detects sensitive data in a pull request?

  • A The PR is automatically approved
  • B The PR is marked for review
  • C The commit is deleted
  • D Notification is sent to the user
Explanation The PR is marked for review to analyze the findings, while other options do not reflect proper handling of sensitive data alerts.
Q136

Which Azure service provides code scanning for security vulnerabilities?

  • A GitHub Advanced Security
  • B Azure DevOps
  • C Azure Functions
  • D Azure App Service
Explanation GitHub Advanced Security includes features like code scanning, while the others focus on deployment or CI/CD processes.
Q137

A company needs to monitor for sensitive data exposure in their repositories. What feature should they use?

  • A Secret scanning
  • B Configuration as Code
  • C Static Web Apps
  • D Branch Policies
Explanation Secret scanning is specifically designed to detect secrets and sensitive data in repositories.
Q138

What happens when an automated pull request includes a code vulnerability but passes all existing tests?

  • A Vulnerability is flagged and reported
  • B Merge is automatically approved
  • C Pull request is rejected outright
  • D Tests need to be rerun manually
Explanation If no policy is in place, the pull request can be merged despite vulnerabilities.
Q139

Which service in Azure helps detect and prevent threats to your code?

  • A Azure Defender
  • B GitHub Advanced Security
  • C Azure Monitor
  • D Azure Sentinel
Explanation GitHub Advanced Security specifically targets code vulnerability management, unlike the others.
Q140

A company needs to pass compliance checks for their application code continuously; which feature should they enable?

  • A CodeQL scanning
  • B Azure Functions
  • C Service Principal
  • D App Service Security
Explanation CodeQL scanning detects vulnerabilities in code; the others do not focus on this requirement.