1. Home
  2. Microsoft
  3. GH-100

Microsoft GH-100 Online Practice Questions and Exam Preparation

GH-100 Exam Details

  • Exam Code
    :GH-100
  • Exam Name
    :GitHub Administration
  • Certification
    :Microsoft Certifications
  • Vendor
    :Microsoft
  • Total Questions
    :77 Q&As
  • Last Updated
    :Jan 12, 2026

Microsoft GH-100 Online Questions & Answers

  • Question 1:

    Which of the following are valid ways to pass data to a reusable workflow in a separate repository?

    A. Use environment variables to pass data directly to the reusable workflow.
    B. Define inputs in the reusable workflow and pass values from the calling workflow.
    C. Define the secrets in the caller repository and call the reusable workflow using the `secrets' keyword.
    D. Define the secrets in the reusable workflow's repository and reference the secret using the `secrets' context.

  • Question 2:

    When comparing fine-grained Personal Access Tokens (PATs) with classic PATs, which of the following statements is accurate?

    A. Fine-grained PATs automatically renew while classic PATs require manual renewal.
    B. Fine-grained PATs permissions can be scoped to specific repositories.
    C. Classic PATs offer more permission controls than fine-grained PATs.
    D. Classic PATs can be restricted to specific organizations, but fine-grained PATs cannot.

  • Question 3:

    Which practice helps avoid service disruption when consuming GitHub APIs at scale?

    A. Designingyour application to work within GitHub's rate limits
    B. Using multiple tokens to bypass limits
    C. Caching all API responses permanently
    D. Ignoring secondary rate limits

  • Question 4:

    Which events from the audit log are exposed by the GraphQL API? Each answer presents a complete solution. (Choose three.)

    A. changes in permissions B promoting users to administrators
    B. pushes to repositories
    C. changes to permissions of a GitHub App
    D. cloning of repositories

  • Question 5:

    What is the new capability of GitHub's billing dashboard?

    A. Automatically removes unused users from billing
    B. Enables tracking of GitHub Copilot usage byuser
    C. Allows self-service plan upgrades
    D. Offers real-time Slack alerts for billing

  • Question 6:

    What needs to be done to ensure that only specific repositories can access the runners in an organization runner group?

    A. Use GitHub's meta API to configure access.
    B. Add a label to the runner group.
    C. Configure repository access in the runner group settings.
    D. Configure the Actions Policies to "Only selected repositories".

  • Question 7:

    When a user becomes a member of multiple GitHub organizations, which THREE of the following are important considerations for administrators? (Choose three.)

    A. The user will automatically have the same role across all organizations.
    B. The user's repository access and/or team membership needs to be managed separately for each organization.
    C. The user will need to authorize credentials separately for each SAML-enabled organization.
    D. The user will have different permission levels in each organization.
    E. The user's profile information becomes private to non-organization members.
    F. The user's personal repositories will become accessible to all organizations.

  • Question 8:

    You discover that a secret (e.g., a token or password) was accidentally committed to a GitHub repository. What is the first step you should take to mitigate the risk?

    A. Contact GitHub Support to remove the secret from all forks and clones of the repository.
    B. Revoke and/or rotate the secret to render it unusable, then assess whether history rewriting is necessary.
    C. Rewrite the repository history using git filter-repo or BFG Repo-Cleaner to remove the secret from all commits.
    D. Delete the repository and create a new one to ensure the secret is no longer accessible.

  • Question 9:

    What will happen if Dependabot discovers a vulnerable transitive dependency in a repository?

    A. It creates a pull request to update the direct dependency to a version that resolves the vulnerability.
    B. It opens a pull request to update the affected package directly, regardless of version compatibility.
    C. It automatically removes the package from the repository.
    D. It sends an email to the repository owner but does not alter code.

  • Question 10:

    Which THREE of the following accurately describe how the SCIM protocol enhances user management in GitHub Enterprise Cloud? (Choose three.)

    A. SCIM synchronizes changes to user attributes from the identity provider to GitHub.
    B. SCIM deactivates GitHub accounts when users are deleted from the identity provider.
    C. SCIM automatically deletes organization repositories when administrators are removed.
    D. SCIM automates user provisioning when new users are added to the identity provider.
    E. SCIM generates authentication tokens for accessing GitHub's REST API.
    F. SCIM configures repository permissions based on user roles within the organization.

Related Exams:

Tips on How to Prepare for the Exams

Nowadays, the certification exams become more and more important and required by more and more enterprises when applying for a job. But how to prepare for the exam effectively? How to prepare for the exam in a short time with less efforts? How to get a ideal result and how to find the most reliable resources? Here on Vcedump.com, you will find all the answers. Vcedump.com provide not only Microsoft exam questions, answers and explanations but also complete assistance on your exam preparation and certification application. If you are confused on your GH-100 exam preparations and Microsoft certification application, do not hesitate to visit our Vcedump.com to find your solutions here.