Microsoft Azure

GitHub Advanced Security

GH-500

Prepare for the GH-500 exam to validate your knowledge in GitHub Advanced Security.

141 questions 0 views Free
Start Mock Test Timed · Full-length · Scored

Questions 31–40 of 141

Q31

Which service provides secrets management in Azure?

  • A Azure Key Vault
  • B Azure Blob Storage
  • C Azure DevOps
  • D Azure Active Directory
Explanation Azure Key Vault securely manages secrets, unlike the other options.
Q32

A company needs to ensure compliance with data protection policies. What is the best practice?

  • A Ignore compliance; focus on features
  • B Implement Azure Policy
  • C Conduct monthly audits
  • D Use only firewall rules
Explanation Implementing Azure Policy ensures compliance through automated management.
Q33

You are configuring GitHub Advanced Security for a repository. What happens when secrets are detected?

  • A Automatically removes secrets
  • B Sends email notification only
  • C Adds secrets to a list
  • D Prevents commits with secrets
Explanation GitHub Advanced Security blocks commits containing detected secrets.
Q34

Which GitHub feature allows for automated security checks on code changes?

  • A CodeQL
  • B GitHub Actions
  • C Dependabot
  • D GitHub Pages
Explanation CodeQL performs automated security checks, while the others serve different functions.
Q35

A company needs to enforce policies for container image security. Which GitHub Advanced Security feature is most suitable?

  • A Secret scanning
  • B Code scanning
  • C Dependency review
  • D Container registry
Explanation Dependency review helps check container dependencies for vulnerabilities, unlike the others which focus on different areas.
Q36

What happens when you disable push protection in GitHub?

  • A All branches are deleted
  • B Security alerts are ignored
  • C Protection rules are removed
  • D Push limits are imposed
Explanation Disabling push protection removes all associated protection rules, while the others are inaccurate descriptions of the feature.
Q37

Which service provides sensitive data scanning in GitHub?

  • A Code Scanning
  • B Secret Scanning
  • C Dependency Review
  • D Pull Requests
Explanation Secret Scanning detects sensitive data like API keys; other options do not focus on sensitive data.
Q38

A company needs to enforce 2FA for contributors on GitHub. What should they do?

  • A Enable SAML authentication
  • B Use GitHub Actions
  • C Set organization-wide security policies
  • D Turn on code signing
Explanation Organization-wide security policies include enabling 2FA; others do not meet this requirement.
Q39

What happens when workflow permissions are set to 'read-only'?

  • A Workflows can still be modified
  • B No actions can be performed by workflows
  • C Workflows can only read secrets
  • D Only deployments are read-only
Explanation Read-only permission prevents any workflow actions; other options misinterpret the implications of permissions.
Q40

Which feature of GitHub Advanced Security helps prevent sensitive data exposure?

  • A Code scanning
  • B Secret scanning
  • C Dependency review
  • D Branch protection
Explanation Secret scanning detects sensitive data, while the other options focus on code quality, dependencies, or branch management.