GH-500 · Question #3
GH-500 Question #3: Real Exam Question with Answer & Explanation
The correct answer is B: Commits that contain secrets are blocked before code is added to the repository.. Secret scanning push protection is a security feature that prevents sensitive information like API keys or tokens from being pushed to a repository in the first place. It works by proactively scanning code during the push process and blocking any attempts to commit secrets. This
Question
Which of the following statements best describes secret scanning push protection?
Options
- AButtons for sensitive actions in the GitHub UI are disabled.
- BCommits that contain secrets are blocked before code is added to the repository.
- CUsers need to reply to a 2FA challenge before any push events.
- DSecret scanning alerts must be closed before a branch can be merged into the repository.
Explanation
Secret scanning push protection is a security feature that prevents sensitive information like API keys or tokens from being pushed to a repository in the first place. It works by proactively scanning code during the push process and blocking any attempts to commit secrets. This differs from regular secret scanning, which only detects secrets after they have been committed.
Topics
Community Discussion
No community discussion yet for this question.