Browse Exams Pricing

ExamsGH-500Questions

GH-500 Exam Questions

123 real GH-500 exam questions with expert-verified answers and explanations. Page 2 of 3.

Question #51Configure and use Code Scanning with CodeQL
When configuring code scanning with CodeQL, what are your options for specifying additional queries? Each answer presents part of the solution. (Choose two.)
CodeQLCode ScanningQuery ConfigurationQuery Packs
Question #52Configure and use Code Scanning with CodeQL
As a developer, you need to configure a code scanning workflow for a repository where GitHub Advanced Security is enabled. What minimum repository permission do you need?
Code ScanningRepository PermissionsWorkflow ConfigurationGHAS
Question #53Implement and manage CodeQL
What does a CodeQL database of your repository contain?
CodeQLCodeQL databaseCode scanningData extraction
Question #54Implement and manage CodeQL
When using CodeQL, what extension stores query suite definitions?
CodeQLQuery suitesFile extensionsCode Scanning
Question #55Configure and use Code Scanning with CodeQL
What is required to trigger code scanning on a specified branch?
Code Scanning TriggerGitHub ActionsWorkflow FilesBranch Configuration
Question #56Configure and use Code Scanning with CodeQL
How would you build your code within the CodeQL analysis workflow? Each answer presents a complete solution. (Choose two.)
CodeQL workflowCodeQL init actionCodeQL autobuildGitHub Actions
Question #57Configure and use Code Scanning with CodeQL
The autobuild step in the CodeQL workflow has failed. What should you do?
CodeQLAutobuildTroubleshootingCustom build steps
Question #58Implement and manage CodeQL
Which of the following steps should you follow to integrate CodeQL into a third-party continuous integration system? Each answer presents part of the solution. (Choose three.)
CodeQL integrationContinuous IntegrationCode scanningGHAS
Question #59Introduction to GitHub Advanced Security
As a repository owner, you do not want to run a GitHub Actions workflow when changes are made to any .txt or markdown files. How would you adjust the event trigger for a pull reque...
GitHub ActionsWorkflow TriggersYAMLFile Filtering
Question #60Secret Scanning
When secret scanning detects a set of credentials on a public repository, what does GitHub do?
Secret scanning detectionSecurity alertsPublic repository secrets
Question #61Describe GitHub Advanced Security best practices, results, and how to take corrective measures
As a developer with write access, you navigate to a code scanning alert in your repository. When will GitHub close this alert?
Code ScanningAlert ManagementPull Request WorkflowGitHub Advanced Security
Question #62Configure and use Code Scanning with CodeQL
Where can you use CodeQL analysis for code scanning? Each answer presents part of the solution. (Choose two.)
CodeQLCode ScanningCI/CD IntegrationGitHub Actions Workflows
Question #63Code Scanning
What does code scanning do?
Code scanningSecurity vulnerabilitiesRepository analysisGitHub Advanced Security
Question #64Code Scanning
Which of the following options are code scanning application programming interface (API) endpoints? Each answer presents part of the solution. (Choose two.)
Code ScanningAPI EndpointsAlerts ManagementGitHub Advanced Security
Question #65Configure and use Code Scanning with CodeQL
When using CodeQL, how does extraction for compiled languages work?
CodeQLExtractionCompiled languagesBuild process
Question #66Code Scanning
What step is required to run a SARIF-compatible (Static Analysis Results Interchange Format) tool on GitHub Actions?
SARIFGitHub ActionsCode ScanningWorkflow configuration
Question #67Configure and use Code Scanning with CodeQL
Where can you view code scanning results from CodeQL analysis?
Code ScanningCodeQLSecurity AlertsGitHub UI
Question #68Configure and use Code Scanning with CodeQL
After looking into an injection code scanning alert, you notice that the input is properly sanitized with custom logic. Which of the following is the next step?
Code Scanning alertsFalse positivesAlert managementInput sanitization
Question #69Code Scanning
You are managing code scanning alerts for your repository. You receive an alert highlighting a problem with data flow. What do you click for additional context on the alert?
Code ScanningData Flow AnalysisAlert ManagementGitHub UI
Question #70Configure and use Code Scanning with CodeQL
When using the advanced CodeQL code scanning setup, what is the name of the workflow file?
CodeQLCode ScanningGitHub Actions workflowsDefault filenames
Question #71Configure and use Code Scanning with CodeQL
You are configuring code scanning with CodeQL. What is one impact of using a language matrix in your workflow?
CodeQLCode ScanningGitHub ActionsLanguage matrix
Question #72Configure and use Code Scanning with CodeQL
What is a benefit of using a custom CodeQL configuration file?
CodeQLCode ScanningConfiguration filesRepository management
Question #73Implement and manage secret scanning
Which of the following tasks can be performed by a security team as a proactive measure to help address secret scanning alerts? Each answer presents a complete solution. (Choose tw...
Secret scanningProactive securitySecurity best practicesAlert management
Question #74Describe the GHAS security features and functionality
What kind of repository permissions do you need to request a Common Vulnerabilities and Exposures (CVE) identification number for a security advisory?
CVESecurity AdvisoryRepository PermissionsGitHub Advanced Security
Question #75Configure and use Dependabot and Dependency Review
Which of the following formats are used to describe a Dependabot alert? Each answer presents a complete solution. (Choose two.)
DependabotVEXCWEVulnerability Management
Question #76Best Practices and Remediation
As a contributor, you discovered a vulnerability in a repository. Where should you look for the instructions on how to report the vulnerability?
Vulnerability ReportingSecurity DisclosureGitHub Repository StructureBest Practices
Question #77Secret Scanning
Which of the following is the best way to prevent developers from adding secrets to the repository?
Secret scanningPush protectionRepository securityPreventing secrets
Question #78Configure and use Code Scanning with CodeQL
Which CodeQL query suite provides queries of lower severity than the default query suite?
CodeQLQuery SuitesCode ScanningSeverity Levels
Question #79Describe GitHub Advanced Security best practices, results, and how to take corrective measures
Why should you dismiss a code scanning alert?
Code Scanning AlertsAlert DismissalFalse PositivesTest Code
Question #80Implement and manage Dependabot
When does Dependabot alert you of a vulnerability in your software development process?
Dependabot alertsVulnerability detectionDependency management
Question #81Best Practices and Remediation
What details should you include in your security policy?
Security PolicyVulnerability ReportingResponsible DisclosureSecurity Best Practices
Question #82Describe the GHAS security features and functionality
Which of the following features can be used to enforce passing status checks for code scanning and dependency review workflows?
repository rulesetsstatus checkscode scanningdependency review
Question #83Code Scanning
What action do you need to include in your workflow to upload a third-party Static Analysis Results Interchange Format (SARIF) file to a repository?
SARIFCode ScanningGitHub ActionsStatic Analysis
Question #84Configure and use Dependabot and Dependency Review
How does Dependabot use the dependency graph in GitHub Advanced Security (GHAS)?
DependabotDependency GraphGitHub Advisory DatabaseGHAS
Question #85Configure and use secret scanning
How does secret scanning availability differ for public and private repositories on GitHub?
Secret ScanningGitHub Advanced SecurityRepository TypesFeature Availability
Question #86Configure and use Dependabot and Dependency Review
What are the permissions and roles required to enable Dependabot alerts on GitHub?
Dependabot alertsRepository permissionsAdmin accessGitHub Advanced Security
Question #87Dependency Management
What is the exportable SBOM format created by the dependency graph on GitHub?
SBOMDependency GraphCycloneDXSPDX
Question #88Describe GitHub Advanced Security best practices, results, and how to take corrective measures
Which of the following is NOT an action a user can take when they receive an alert from GitHub Advanced Security (GHAS)?
GHAS alertsAlert managementSecurity alertsRemediation
Question #89Describe the GHAS security features and functionality
How does GitHub Advanced Security (GHAS) help integrate security into each step of the software development life cycle?
GitHub Advanced SecuritySDLC IntegrationAutomated SecurityPull Request Security
Question #90Implement and manage Dependabot
What are the default settings for Dependabot alerts in public and private repositories on GitHub?
Dependabot alertsDefault settingsPublic vs Private repos
Question #91Configure and use Code Scanning with CodeQL
What is the difference between scheduled versus triggered events in code scanning?
Code ScanningScheduled ScansTriggered ScansGitHub Actions Triggers
Question #92Configure and use Code Scanning with CodeQL
When code scanning is enabled, what is one default event that triggers a scan?
Code scanningDefault triggersPush event
Question #93Describe GitHub Advanced Security best practices, results, and how to take corrective measures
Which two pieces of information should be included in a security advisory?
Security AdvisoryVulnerability DisclosureRemediation InformationBest Practices
Question #94Configure and use secret scanning
What YAML syntax do you use to exclude certain files from secret scanning?
Secret ScanningConfigurationYAML SyntaxExclusion Paths
Question #95Secret Scanning
Secret scanning will scan:
Secret scanning scopeGitHub repositoriesGHAS features
Question #96Secret Scanning
Which of the following features helps to prioritize secret scanning alerts that present an immediate risk?
Secret scanningPush protectionAlert prioritizationImmediate risk
Question #97Configure and use secret scanning
What do you need to do before you can define a custom pattern for a repository?
Secret ScanningCustom PatternsEnablementConfiguration
Question #98Configure and use secret scanning
Which of the following statements most accurately describes push protection for secret scanning custom patterns?
Secret scanningPush protectionCustom patternsConfiguration
Question #99Configure and use secret scanning
Which details do you have to provide to create a custom pattern for secret scanning? Each answer presents part of the solution. (Choose two.)
Secret ScanningCustom PatternsConfigurationGitHub Advanced Security
Question #100Configure and use secret scanning
After defining a secret scanning custom pattern, what is the final step before publishing the pattern?
Secret ScanningCustom PatternsDry RunGHAS

PreviousPage 2 of 3Next

study smarter, certify faster.

Product

Browse Exams
Pricing
PDF Downloads

Resources

Blog
Glossary
Topics
FAQ
Contact Us

Legal

Terms of Service
Privacy Policy
Cookie Policy
DMCA
Refund Policy

Company

About
Contact

© 2026 NerdExam. All rights reserved.Built for IT professionals

NerdExam is a trading name of WADL Solutions Limited, a company incorporated in Hong Kong (CR# 80143234). Registered office: Unit 2904-05, 29/F, Universal Trade Centre, 3 Arbuthnot Road, Central, Hong Kong.

CompTIA, AWS, Cisco, Microsoft, Google Cloud, Oracle, VMware, and other certification names referenced on this site are trademarks of their respective owners. NerdExam is not affiliated with, endorsed by, or sponsored by any certification vendor.