Browse Exams Pricing

ExamsGH-500Questions

GH-500 Exam Questions

123 real GH-500 exam questions with expert-verified answers and explanations. Page 1 of 3.

Question #1Implement and manage secret scanning
A secret scanning alert should be closed as "used in tests" when a secret is:
Secret scanningAlert resolutionGHASTest secrets
Question #2Configure and use secret scanning
What happens when you enable secret scanning on a private repository?
Secret scanningSecurity alertsRepository administrationGitHub Advanced Security
Question #3Secret Scanning
Which of the following statements best describes secret scanning push protection?
Secret scanningPush protectionGitHub Advanced Security
Question #4Best Practices and Remediation
What is a security policy?
GitHub Security PolicySECURITY.mdVulnerability DisclosureBest Practices
Question #5Describe GitHub Advanced Security best practices, results, and how to take corrective measures
Which of the following information can be found in a repository's Security tab?
GitHub Advanced SecurityGHAS alertsRepository Security tabSecurity overview
Question #6Describe the GHAS security features and functionality
Which of the following benefits do code scanning, secret scanning, and dependency review provide?
Code ScanningSecret ScanningDependency ReviewGHAS features
Question #7Describe the GHAS security features and functionality
Which alerts do you see in the repository's Security tab? Each answer presents part of the solution. (Choose three.)
Secret scanning alertsDependabot alertsCode scanning alertsGitHub Security tab
Question #8Configure and use Dependabot and Dependency Review
A dependency has a known vulnerability. What does the warning message include?
Dependency vulnerabilityDependabot alertsVulnerability descriptionDependency Review
Question #9GitHub Advanced Security Features
Which features require GitHub Advanced Security to be enabled for internal and private repositories in an organization? Each correct answer presents part of the solution. (Choose t...
GitHub Advanced SecurityGHAS featuresSecret ScanningDependency Review
Question #10Best Practices and Remediation
Which of the following is the best way to dispose of a compromised secret?
Secret remediationCompromised secretsSecurity best practices
Question #11Secret Scanning
Assuming that no custom patterns are configured, what type of secret is detected by secret scanning?
Secret scanningDefault patternsDetected secretsGitHub Advanced Security
Question #12Configure and use Code Scanning with CodeQL
What is the best method to ensure all new code is scanned for vulnerabilities?
Code scanningVulnerability scanningNew code securityGHAS
Question #13Implement and manage secret scanning
What is the first step you should take to fix an alert in secret scanning?
secret scanningalert remediationsecurity workflowGitHub Advanced Security
Question #14Implement and manage secret scanning
Where in the repository can you give additional users access to secret scanning alerts?
Secret ScanningAccess ControlRepository SettingsGHAS
Question #15Configure and use secret scanning
What filter or sort settings can be used to prioritize the secret scanning alerts that present the most risk?
secret scanning alertsrisk prioritizationalert filteringactive secrets
Question #16Secret Scanning
Which of the following secret scanning features can verify whether a secret is still active?
secret scanningvalidity checksGHAS features
Question #17Configure and use secret scanning
What is a prerequisite to define a custom pattern for a repository?
Secret scanningCustom patternsPrerequisitesRepository configuration
Question #18Secret Scanning
Assuming security and analysis features are not configured at the repository, organization, or enterprise level, secret scanning is enabled on:
Secret scanning defaultsPublic repositoriesGitHub security features
Question #19Configure and use secret scanning
Which patterns are secret scanning validity checks available to?
Secret ScanningCustom PatternsValidity ChecksGitHub Advanced Security
Question #20Configure and use Code Scanning with CodeQL
What role is required to change a repository's code scanning severity threshold that fails a pull request status check?
Code ScanningGitHub RolesRepository PermissionsSeverity Thresholds
Question #21Configure and use secret scanning
Which of the following is the most proactive and practical way to prevent new secret scanning alerts?
Secret scanningPush protectionPreventionGHAS
Question #22Configure and use secret scanning
By default, where will secret scanning look in a repository in order to execute its job? Each correct answer presents part of the solution. (Choose three.)
secret scanningrepository scopecommit historybranches
Question #23Configure and use secret scanning
Which of the following would raise secret scanning alerts?
Secret scanningGitHub tokensCredentialsAlerts
Question #24Secret Scanning
What is the purpose of push protection?
push protectionsecret scanningsecrets detectionpre-commit scanning
Question #25Code Scanning
Which of the following pre-defined roles is required to manage code scanning alerts in a repository?
code scanningpermissionsrepository rolesalert management
Question #26Configure and use secret scanning
Where is secret scanning enabled on a private repository?
Secret ScanningRepository SettingsEnabling FeaturesCode Security
Question #27Configure and use Dependabot and Dependency Review
Which of the following is the most complete method for Dependabot to find vulnerabilities in third- party dependencies?
DependabotVulnerability detectionDependency graphGitHub Advisory Database
Question #28Dependency Management
In a private repository, what minimum requirements does GitHub need to generate a dependency graph? (Each answer presents part of the solution. Choose two.)
Dependency GraphPrivate RepositoriesGitHub Advanced SecurityConfiguration
Question #29Configure and use Dependabot and Dependency Review
You have enabled security updates for a repository. When does GitHub mark a Dependabot alert as resolved for that repository?
Dependabot alertsAlert resolutionSecurity updatesPull requests
Question #30Configure and use Dependabot and Dependency Review
Assuming that notification settings and Dependabot alert recipients have not been customized, which user account setting should you use to get an alert when a vulnerability is dete...
Dependabot alertsVulnerability managementNotification settingsUser account configuration
Question #31Implement and manage Dependabot
What are Dependabot security updates?
DependabotSecurity UpdatesVulnerability ManagementAutomated PRs
Question #32Configure and use Dependabot and Dependency Review
Which of the following Watch settings could you use to get Dependabot alert notifications? Each answer presents part of the solution. (Choose two.)
Dependabot alertsGitHub notificationsWatch settingsNotification configuration
Question #33Configure and use Dependabot and Dependency Review
If default code security settings have not been changed at the repository, organization, or enterprise level, which repositories receive Dependabot alerts?
Dependabot alertsDefault security settingsRepository configuration
Question #34Best Practices and Remediation
Who can fix a code scanning alert on a private repository?
Code Scanning AlertsRepository PermissionsAlert RemediationGitHub Roles
Question #35Configure and use Dependabot and Dependency Review
Assuming that no custom Dependabot behavior is configured, who has the ability to merge a pull request created via Dependabot security updates?
DependabotPull RequestsPermissionsSecurity Updates
Question #36Configure and use Dependabot and Dependency Review
Which key is required in the update settings of the Dependabot configuration file?
Dependabot configuration`dependabot.yml`Required fieldsPackage ecosystems
Question #37Configure and use Dependabot and Dependency Review
Where can you find a deleted line of code that contained a secret value?
Secret scanningDependency GraphDependency ReviewHistorical data
Question #38Configure and use Dependabot and Dependency Review
Which security feature shows a vulnerable dependency in a pull request?
dependency reviewvulnerable dependenciespull requestsGHAS
Question #39Configure and use Dependabot and Dependency Review
What should you do after receiving an alert about a dependency added in a pull request?
DependabotDependency ReviewVulnerability RemediationPull Request Security
Question #40Configure and use Dependabot and Dependency Review
Assuming that notification and alert recipients are not customized, what does GitHub do when it identifies a vulnerable dependency in a repository where Dependabot alerts are enabl...
Dependabot alertsVulnerable dependenciesSecurity notificationsGitHub Security tab
Question #41Configure and use Dependabot and Dependency Review
Which GitHub security feature should you use to see details of any vulnerable dependency versions within a pull request?
Dependency ReviewVulnerable dependenciesPull requestsGitHub Advanced Security
Question #42Configure and use Dependabot and Dependency Review
What is the best way to ensure that added dependencies' licenses are checked and new code is analyzed at the repository level?
Dependency ReviewDependency ManagementLicense CheckingGitHub Actions
Question #43Configure and use Dependabot and Dependency Review
What classification is used to categorize Dependabot alerts? Each correct answer presents part of the solution. (Choose three.)
Dependabot alertsVulnerability classificationSecurity standardsVulnerability scoring
Question #44Dependency Management
Assuming that default security and analysis settings have not been changed at the repository, organization, or enterprise level, which scenario would generate a dependency graph fo...
Dependency GraphGitHub Advanced SecurityPrivate RepositoriesManifest Files
Question #45Configure and use Dependabot and Dependency Review
What scenario demonstrates the use of Dependabot security updates?
DependabotSecurity updatesDependency managementPull requests
Question #46Configure and use Dependabot and Dependency Review
Which of the following dependencies could trigger a Dependabot alert? Each answer presents a complete solution. (Choose two.)
DependabotDependency monitoringManifest filesLock files
Question #47Configure and use Dependabot and Dependency Review
Where can you find the vulnerable dependencies that GitHub detected in your repository?
DependabotVulnerable dependenciesSecurity alertsDependency management
Question #48Configure and use Dependabot and Dependency Review
You have enabled Dependabot alerts on your repository. If Dependabot detects a vulnerable dependency, it sends an alert when:
Dependabot alertsVulnerable dependenciesDependency managementManifest files
Question #49Implement and manage secret scanning
What is the minimum role needed in order to view the secret scanning alerts list within the Security tab of a repository?
secret scanningpermissionsrepository rolesGHAS access control
Question #50Implement and manage Dependabot
By default, which roles can enable Dependabot alerts?
Dependabot alertsGitHub rolesPermissionsRepository administration

Page 1 of 3Next

study smarter, certify faster.

Product

Browse Exams
Pricing
PDF Downloads

Resources

Blog
Glossary
Topics
FAQ
Contact Us

Legal

Terms of Service
Privacy Policy
Cookie Policy
DMCA
Refund Policy

Company

About
Contact

© 2026 NerdExam. All rights reserved.Built for IT professionals

NerdExam is a trading name of WADL Solutions Limited, a company incorporated in Hong Kong (CR# 80143234). Registered office: Unit 2904-05, 29/F, Universal Trade Centre, 3 Arbuthnot Road, Central, Hong Kong.

CompTIA, AWS, Cisco, Microsoft, Google Cloud, Oracle, VMware, and other certification names referenced on this site are trademarks of their respective owners. NerdExam is not affiliated with, endorsed by, or sponsored by any certification vendor.