Microsoft GitHub Advanced Security Sample Questions:
NEW QUESTION # 20
Where in the repository can you give additional users access to secret scanning alerts?
- A. Secrets
- B. Insights
- C. Settings
- D. Security
Answer: C
Explanation:
To grant specific users access to view and manage secret scanning alerts, you do this via the Settings tab of the repository. From there, under the "Code security and analysis" section, you can add individuals or teams with roles such as security manager.
The Security tab only displays alerts; access control is handled in Settings.
NEW QUESTION # 21
When using CodeQL, how does extraction for compiled languages work?
- A. By running directly on the source code
- B. By resolving dependencies to give an accurate representation of the codebase
- C. By generating one language at a time
- D. By monitoring the normal build process
Answer: D
Explanation:
For compiled languages, CodeQL performs extraction by monitoring the normal build process. This means it watches your usual build commands (like make, javac, or dotnet build) and extracts the relevant data from the actual build steps being executed. CodeQL uses this information to construct a semantic database of the application.
This approach ensures that CodeQL captures a precise, real-world representation of the code and its behavior as it is compiled, including platform-specific configurations or conditional logic used during build.
NEW QUESTION # 22
... >> https://examcollection.pdftorrent.com/GH-500-latest-dumps.html
| 
