Question No 1

– [Configure and Use Code Scanning] After investigating a code scanning alert related to injection, you determine that the input is properly sanitized using custom logic. What should be your next step?

Choose the Choices:

Question No 2

– [Configure and Use Dependency Management] When does Dependabot alert you of a vulnerability in your software development process?

Choose the Choices:

When a pull request adding a vulnerable dependency is opened

As soon as a vulnerable dependency is detected

As soon as a pull request is opened by a contributor

When Dependabot opens a pull request to update a vulnerable dependency

Question No 3

– [Configure and Use Dependency Management] Which of the following is the most complete method for Dependabot to find vulnerabilities in third - party dependencies?

Choose the Choices:

Dependabot reviews manifest files in the repository

CodeQL analyzes the code and raises vulnerabilities in third - party dependencies

A dependency graph is created, and Dependabot compares the graph to the GitHub Advisory database

The build tool finds the vulnerable dependencies and calls the Dependabot API

Question No 4

– [Describe the GHAS Security Features and Functionality] What is a security policy?

Choose the Choices:

An automatic detection of security vulnerabilities and coding errors in new or modified code

A security alert issued to a community in response to a vulnerability

A file in a GitHub repository that provides instructions to users about how to report a security vulnerability

An alert about dependencies that are known to contain security vulnerabilities

Question No 5

– [Configure GitHub Advanced Security Tools in GitHub Enterprise] As a repository owner, you want to receive specific notifications, including security alerts, for an individual repository. Which repository notification setting should you use?

Choose the Choices:

Practice Microsoft GH-500 Exam Questions

Question No 1

Question No 2

Question No 3

Question No 4

Question No 5

GH-500 Exam Features

GH-500 PDF Dumps