
Microsoft GitHub Advanced Security - GH-500 Exam Questions
QUESTION NO: 1
What does a CodeQL database of your repository contain?
What does a CodeQL database of your repository contain?
Correct Answer: A
Explanation: Only visible for Pass4Test members. You can sign-up / login (it's free).
QUESTION NO: 2
You have enabled security updates for a repository. When does GitHub mark a Dependabot alert as resolved for that repository?
You have enabled security updates for a repository. When does GitHub mark a Dependabot alert as resolved for that repository?
Correct Answer: C
Explanation: Only visible for Pass4Test members. You can sign-up / login (it's free).
QUESTION NO: 3
What is the best way to ensure that added dependencies' licenses are checked and new code is analyzed at the repository level?
What is the best way to ensure that added dependencies' licenses are checked and new code is analyzed at the repository level?
Correct Answer: C
Explanation: Only visible for Pass4Test members. You can sign-up / login (it's free).
QUESTION NO: 4
Where in the repository can you give additional users access to secret scanning alerts?
Where in the repository can you give additional users access to secret scanning alerts?
Correct Answer: C
Explanation: Only visible for Pass4Test members. You can sign-up / login (it's free).
QUESTION NO: 5
What details should you include in your security policy?
What details should you include in your security policy?
Correct Answer: D
Explanation: Only visible for Pass4Test members. You can sign-up / login (it's free).
QUESTION NO: 6
Which alerts do you see in the repository's Security tab? Each answer presents part of the solution. (Choose three.)
Which alerts do you see in the repository's Security tab? Each answer presents part of the solution. (Choose three.)
Correct Answer: B,C,E
Explanation: Only visible for Pass4Test members. You can sign-up / login (it's free).
QUESTION NO: 7
Which of the following workflow events would trigger a dependency review? (Each answer presents a complete solution. Choose two.)
Which of the following workflow events would trigger a dependency review? (Each answer presents a complete solution. Choose two.)
Correct Answer: B,D
Explanation: Only visible for Pass4Test members. You can sign-up / login (it's free).
QUESTION NO: 8
What is code scanning?
What is code scanning?
Correct Answer: A
Explanation: Only visible for Pass4Test members. You can sign-up / login (it's free).




