GH-500 Exam Details

  • Exam Code
    :GH-500
  • Exam Name
    :GitHub Advanced Security
  • Certification
    :Microsoft Certifications
  • Vendor
    :Microsoft
  • Total Questions
    :133 Q&As
  • Last Updated
    :Jul 08, 2026

Microsoft GH-500 Online Questions & Answers

  • Question 1:

    Which CodeQL query suite provides queries of lower severity than the default query suite?

    A. github/codeql/cpp/ql/src@main
    B. security-extended
    C. github/codeql-go/ql/src@main

  • Question 2:

    If default code security settings have not been changed at the repository, organization, or enterprise level, which repositories receive Dependabot alerts?

    A. private repositories
    B. none
    C. repositories owned by an organization
    D. repositories owned by an enterprise account

  • Question 3:

    What is code scanning?

    A. a feature to identify all your project's dependencies
    B. a feature that analyzes the code in a GitHub repository to find security vulnerabilities and coding errors
    C. a feature to privately discuss, fix, and publish information about security vulnerabilities in your repository
    D. a feature that scans repositories for known types of secrets, to prevent fraudulent use of secrets that were committed accidentally

  • Question 4:

    What YAML syntax do you use to exclude certain files from secret scanning?

    A. paths-ignore:
    B. secret_scanning.yml
    C. branches-ignore:
    D. decrypt_secret.sh

  • Question 5:

    Where can a user change a repository's code scanning severity threshold that fails a pull request status check?

    A. Settings tab
    B. Actions tab
    C. Security tab
    D. Pull Requests tab

  • Question 6:

    A secret scanning alert should be closed as "used in tests" when a secret is:

    A. in a test file.
    B. solely used for tests.
    C. in the readme.md file.
    D. not a secret in the production environment.

  • Question 7:

    Which of the following statements best describes secret scanning push protection?

    A. Buttons for sensitive actions in the GitHub UI are disabled.
    B. Commits that contain secrets are blocked before code is added to the repository.
    C. Users need to reply to a 2FA challenge before any push events.
    D. Secret scanning alerts must be closed before a branch can be merged into the repository.

  • Question 8:

    A repository's dependency graph includes:

    A. annotated code scanning alerts from your repository's dependencies.
    B. dependencies from all your repositories.
    C. a summary of the dependencies used in your organization's repositories.
    D. dependencies parsed from a repository's manifest and lock files.

  • Question 9:

    As a developer, you need to configure a code scanning workflow for a repository where GitHub Advanced Security is enabled. What minimum repository permission do you need?

    A. Read
    B. Admin
    C. None
    D. Write

  • Question 10:

    Which of the following options would close a Dependabot alert?

    A. viewing the dependency graph
    B. leaving the repository in its current state
    C. creating a pull request to resolve the vulnerability that will be approved and merged
    D. viewing the Dependabot alert on the Dependabot alerts tab of your repository

Tips on How to Prepare for the Exams

Nowadays, the certification exams become more and more important and required by more and more enterprises when applying for a job. But how to prepare for the exam effectively? How to prepare for the exam in a short time with less efforts? How to get a ideal result and how to find the most reliable resources? Here on Vcedump.com, you will find all the answers. Vcedump.com provide not only Microsoft exam questions, answers and explanations but also complete assistance on your exam preparation and certification application. If you are confused on your GH-500 exam preparations and Microsoft certification application, do not hesitate to visit our Vcedump.com to find your solutions here.