Online Access Free GH-500 Exam Questions

Assuming that no custom patterns are configured, what type of secret is detected by secret scanning?

• A.usernames
• B.sealed boxes
• C.Personal Identifiable Information (PII)
• D.private keys

Where can you find the vulnerable dependencies that GitHub detected in your repository?

• A.in Dependabot alerts
• B.in security advisories
• C.in code scanning alerts
• D.in secret scanning alerts

Which of the following tasks can be performed by a security team as a proactive measure to help address secret scanning alerts? Each answer presents a complete solution. (Choose two.)

• A.Enable system for cross-domain identity management (SCIM) provisioning for the enterprise.
• B.Configure a webhook to monitor for secret scanning alert events.
• C.Dismiss alerts that are older than 90 days.
• D.Document alternatives to storing secrets in the source code.

Which GitHub security feature should you use to see details of any vulnerable dependency versions within a pull request?

• A.code scanning
• B.dependency review
• C.dependency graph
• D.Dependabot alerts

Which of the following statements best describes secret scanning push protection?

• A.Users need to reply to a 2FA challenge before any push events.
• B.Secret scanning alerts must be closed before a branch can be merged into the repository.
• C.Commits that contain secrets are blocked before code is added to the repository.
• D.Buttons for sensitive actions in the GitHub UI are disabled.