MicrosoftMicrosoft
GH-500 · Question #106
GH-500 Question #106: Real Exam Question with Answer & Explanation
Sign in or unlock GH-500 to reveal the answer and full explanation for question #106. The question stem and answer options stay visible for context.
Configure and use Dependabot and Dependency Review
Question
Assuming there is no custom Dependabot behavior configured, where possible, what does Dependabot do after sending an alert about a vulnerable dependency in a repository?
Options
- Ascans repositories for vulnerable dependencies on a schedule and adds those files to a manifest
- Bscans any push to all branches and generates an alert for each vulnerable repository
- Ccreates a pull request to upgrade the vulnerable dependency to the minimum possible secure
- Dconstructs a graph of all the repository's dependencies and public dependents for the default
Unlock GH-500 to see the answer
You've previewed enough free GH-500 questions. Unlock GH-500 for full answers, explanations, the timed quiz mode, progress tracking, and the master PDF. Question stem and options stay visible so you can still see what's on the exam.
Topics
#Dependabot#Dependency remediation#Vulnerability management#Pull requests