Microsoft Azure

GitHub Advanced Security

GH-500

Prepare for the GH-500 exam to validate your knowledge in GitHub Advanced Security.

141 questions 0 views Free
Start Mock Test Timed · Full-length · Scored

Questions 61–70 of 141

Q61

Which service can protect against vulnerabilities in open source components?

  • A GitHub Dependabot
  • B Azure Defender
  • C AWS GuardDuty
  • D GitHub Actions
Explanation GitHub Dependabot automatically checks for vulnerable dependencies, while others do not focus specifically on this.
Q62

A company needs to monitor its GitHub repository for sensitive data leaks. What should they configure?

  • A GitHub Actions
  • B GitHub Code Scanning
  • C GitHub Secret Scanning
  • D Azure Policy
Explanation GitHub Secret Scanning detects sensitive data like keys, unlike the other options.
Q63

What happens when you enable required reviews for a pull request in GitHub?

  • A Only admins may approve them.
  • B Automatic approvals are disabled.
  • C All branches must have approvals.
  • D Code can only be merged after approval.
Explanation Enabling required reviews means approvals must be obtained before merging, while others are not necessarily true.
Q64

What is the purpose of GitHub's CodeQL?

  • A Automated code review process
  • B Static code analysis for vulnerabilities
  • C Real-time coding collaboration tool
  • D Cloud resource management solution
Explanation CodeQL is designed for static code analysis to identify vulnerabilities; automated code review tools don't analyze code for security issues specifically, real-time collaboration isn't its function, and it doesn't manage cloud resources.
Q65

A company needs to enforce branch protection rules in GitHub. Which feature does this utilize?

  • A Repository Actions
  • B Branch Policies
  • C Environment Variables
  • D User Permissions
Explanation Branch protection rules are specifically managed under Branch Policies; Repository Actions are for automation, Environment Variables store settings, and User Permissions regulate access, not branch rules.
Q66

What happens when a secret is scanned and found in a GitHub repository?

  • A The repository is temporarily hidden.
  • B An alert is generated to the user.
  • C The secret is deleted automatically.
  • D All commits are reverted immediately.
Explanation If a secret is found, an alert is generated for the user rather than hiding the repository, deleting secrets, or reverting commits, which are not automated responses.
Q67

Which service in Azure helps to manage code secrets securely?

  • A Azure Key Vault
  • B Azure Blob Storage
  • C Azure Active Directory
  • D Azure DevOps
Explanation Azure Key Vault securely manages secrets, while the others do not focus on secret management.
Q68

A company needs to enforce code quality checks on each pull request. Which GitHub feature should they use?

  • A Branch Protection Rules
  • B Actions Workflows
  • C Pull Request Templates
  • D Contributors Guidelines
Explanation Branch Protection Rules enforce checks on pull requests, while others do not enforce code quality.
Q69

You are configuring a repository for sensitive data. What happens when you enable secret scanning?

  • A Secrets will be automatically deleted.
  • B GitHub alerts you to potential leaks.
  • C Access control on the repo is changed.
  • D Code coverage becomes mandatory.
Explanation Secret scanning provides alerts for potential leaks, while the others do not accurately describe its function.
Q70

Which service enables automated scanning of code repositories for security vulnerabilities?

  • A GitHub Advanced Security
  • B Azure DevOps
  • C GitHub Actions
  • D Azure Monitor
Explanation GitHub Advanced Security provides automated vulnerability scanning, while others focus on CI/CD or monitoring functionalities.