Microsoft GH-500 Exam Questions

Question 6 of 113

Which of the following benefits do code scanning, secret scanning, and dependency review provide?

Automatically raise pull requests, which reduces your exposure to older versions of dependencies.

View alerts about dependencies that are known to contain security vulnerabilities.

Search for potential security vulnerabilities, detect secrets, and show the full impact of changes to dependencies.

Confidentially report security vulnerabilities and privately discuss and fix security vulnerabilities in your repository’s code.

Correct Answer: C

Question 7 of 113

Which alerts do you see in the repository’s Security tab? Each answer presents part of the solution. (Choose three.)

secret scanning alerts

Dependabot alerts

code scanning alerts

security status alerts

repository permissions

Correct Answer: A, B, C

Question 8 of 113

A dependency has a known vulnerability. What does the warning message include?

an easily understandable visualization of dependency change

a brief description of the vulnerability

how many projects use these components

the security impact of these changes

Correct Answer: B

Question 9 of 113

Which features require GitHub Advanced Security to be enabled for internal and private repositories in an organization? Each correct answer presents part of the solution. (Choose two.)

security policy

secret scanning

packages

dependency review

Correct Answer: B, D

Question 10 of 113

Which of the following is the best way to dispose of a compromised secret?

Create a new secret.

Revoke the secret.

Update any services that use the secret.

Remove the secret from the code base.

Correct Answer: B