GitHub-Advanced-Security by GitHub Actual Free Exam Questions And Answers

Question 1

Which of the following secret scanning features can verify whether a secret is still active?

A. Custom patterns

B. Branch protection

C. Validity checks

D. Push protection

Discussion 0

Correct Answer: C Vote an answer

Explanation: Only visible for Fast2test members. You can sign-up / login (it's free).

Question 2

What is required to trigger code scanning on a specified branch?

A. The workflow file must exist in that branch.

B. Secret scanning must be enabled on the repository.

C. The repository must be private.

D. Developers must actively maintain the repository.

Discussion 0

Correct Answer: A Vote an answer

Explanation: Only visible for Fast2test members. You can sign-up / login (it's free).

Question 3

What is the first step you should take to fix an alert in secret scanning?

A. Revoke the alert if the secret is still valid.

B. Remove the secret in a commit to the main branch.

C. Archive the repository.

D. Update your dependencies.

Discussion 0

Correct Answer: A Vote an answer

Explanation: Only visible for Fast2test members. You can sign-up / login (it's free).

Question 4

Which of the following is the best way to prevent developers from adding secrets to the repository?

A. Make the repository public

B. Enable push protection

C. Create a CODEOWNERS file

D. Configure a security manager

Discussion 0

Correct Answer: B Vote an answer

Explanation: Only visible for Fast2test members. You can sign-up / login (it's free).

Question 5

When using CodeQL, what extension stores query suite definitions?

A. .yml

B. .qll

C. .qls

D. .ql

Discussion 0

Correct Answer: C Vote an answer

Explanation: Only visible for Fast2test members. You can sign-up / login (it's free).

Question 6

Which of the following is the most complete method for Dependabot to find vulnerabilities in third-party dependencies?

A. CodeQL analyzes the code and raises vulnerabilities in third-party dependencies

B. Dependabot reviews manifest files in the repository

C. A dependency graph is created, and Dependabot compares the graph to the GitHub Advisorydatabase

D. The build tool finds the vulnerable dependencies and calls the Dependabot API

Discussion 0

Correct Answer: C Vote an answer

Explanation: Only visible for Fast2test members. You can sign-up / login (it's free).

Question 7

Secret scanning will scan:

A. The GitHub repository.

B. A continuous integration system.

C. External services.

D. Any Git repository.

Discussion 0

Correct Answer: A Vote an answer

Explanation: Only visible for Fast2test members. You can sign-up / login (it's free).

Question 8

What is a prerequisite to define a custom pattern for a repository?

A. Close other secret scanning alerts

B. Change the repository visibility to Internal

C. Specify additional match criteria

D. Enable secret scanning

Discussion 0

Correct Answer: D Vote an answer

Explanation: Only visible for Fast2test members. You can sign-up / login (it's free).

GitHub Advanced Security GHAS - GitHub-Advanced-Security Exam Practice Test

Contact Us

Useful Links

Latest Updated