GH-200 · Question #41
GH-200 Question #41: Real Exam Question with Answer & Explanation
The correct answer is C: Default secret masking in logs. {"question": 8, "explanation": "GitHub Actions provides (C) default secret masking in logs: when a secret is registered in GitHub (as a repository, environment, or organization secret), its value is automatically redacted and replaced with '***' in all workflow log output. This h
Question
Which GitHub Actions capability prevents secrets from appearing in workflow logs?
Options
- AManual approval for secret log output
- BGitHub Audit Log
- CDefault secret masking in logs
- DEncrypted secrets written to logs
Explanation
{"question": 8, "explanation": "GitHub Actions provides (C) default secret masking in logs: when a secret is registered in GitHub (as a repository, environment, or organization secret), its value is automatically redacted and replaced with '***' in all workflow log output. This happens transparently without any additional configuration. (A) is incorrect - there is no manual approval mechanism for secret log output. (B) the GitHub Audit Log tracks events like secret creation and access, but does not mask values in workflow logs. (D) is the opposite of correct behavior - secrets are masked (hidden), not written in plain text to logs.", "generated_by": "claude-sonnet", "llm_judge_score": 4}
Topics
Community Discussion
No community discussion yet for this question.