Microsoft Azure

GitHub Advanced Security

GH-500

Prepare for the GH-500 exam to validate your knowledge in GitHub Advanced Security.

141 questions 0 views Free
Start Mock Test Timed · Full-length · Scored

Questions 41–50 of 141

Q41

A company needs to comply with PCI DSS requirements. Which GitHub feature can ensure that sensitive information is protected in their code?

  • A Commit History
  • B Secret scanning
  • C Pull request reviews
  • D Branch policies
Explanation Secret scanning is specifically designed to identify credentials, while the others do not directly protect sensitive information.
Q42

You are configuring a GitHub Actions workflow. What happens if a step fails and you have not set continue-on-error?

  • A The workflow stops completely.
  • B The workflow skips to next job.
  • C It retries the step automatically.
  • D It marks the job as successful.
Explanation If continue-on-error is not set, a failed step halts the workflow altogether, whereas the others incorrectly suggest different behaviors.
Q43

Which service provides automated code scanning for vulnerabilities?

  • A GitHub Advanced Security
  • B Azure DevOps
  • C Container Registry
  • D Azure Firewall
Explanation GitHub Advanced Security automatically scans code for vulnerabilities, while others do not focus on code scanning.
Q44

A company needs to enforce branch protection rules. What should they do?

  • A Disable pull requests
  • B Use environment variables
  • C Enable branch protection settings
  • D Increase repository visibility
Explanation Enabling branch protection settings ensures that specific rules are enforced on important branches.
Q45

What happens when a secret is exposed in a public GitHub repository?

  • A It gets automatically encrypted
  • B GitHub permanently deletes it
  • C Exposure is logged for audits
  • D It can be harvested by anyone
Explanation Exposing a secret in a public repository allows anyone to access it, posing security risks, while others suggest actions that do not occur automatically.
Q46

Which GitHub feature helps to identify vulnerabilities in dependencies?

  • A Dependabot
  • B Issue Tracker
  • C Action Workflows
  • D Project Boards
Explanation Dependabot automatically scans for vulnerabilities, while others do not perform this functionality.
Q47

A company needs to ensure that sensitive data in repositories is not exposed. Which GitHub feature can help?

  • A Branch Protection Rules
  • B Code Owners
  • C Secret Scanning
  • D Pull Request Templates
Explanation Secret Scanning automatically detects and alerts on sensitive data, unlike the other options which do not focus on sensitive information exposure.
Q48

What happens when you enable GitHub Advanced Security for a repository?

  • A It restricts code addition.
  • B It scans for security vulnerabilities.
  • C It automatically merges pull requests.
  • D It archives the repository.
Explanation Enabling it activates security scanning features, unlike the options that suggest unrelated actions.
Q49

Which Azure service provides automated threat detection?

  • A Azure Security Center
  • B Azure Storage
  • C Azure DevOps
  • D Azure Functions
Explanation Azure Security Center offers threat protection automation; others focus on storage or development tools.
Q50

A company needs to store secrets securely for CI/CD pipelines. Which service should they use?

  • A Azure Key Vault
  • B Azure Blob Storage
  • C Azure Table Storage
  • D Azure SQL Database
Explanation Azure Key Vault is designed for securely storing secrets, while the others are not suited for this purpose.