Where can you find a deleted line of code that contained a secret value?
A. Dependency graph
B. Insights
C. Commits
D. Issues
正解:C
解説: (Pass4Test メンバーにのみ表示されます)
質問 2:
What does code scanning do?
A. It scans your entire Git history on branches present in your GitHub repository for any secrets
B. It analyzes a GitHub repository to find security vulnerabilities
C. It prevents code pushes with vulnerabilities as a pre-receive hook
D. It contacts maintainers to ask them to create security advisories if a vulnerability is found
正解:B
解説: (Pass4Test メンバーにのみ表示されます)
質問 3:
Which CodeQL query suite provides queries of lower severity than the default query suite?
A. github/codeql-go/ql/src@main
B. security-extended
C. github/codeql/cpp/ql/src@main
正解:B
解説: (Pass4Test メンバーにのみ表示されます)
質問 4:
What does a CodeQL database of your repository contain?
A. A build of the code and extracted data
B. A build for Go projects to set up the project
C. A representation of all of the source code GitHub Agentic AI for AppSec Teams
D. Build commands for C/C++, C#, and Java
正解:A
解説: (Pass4Test メンバーにのみ表示されます)
質問 5:
Where in the repository can you give additional users access to secret scanning alerts?
A. Secrets
B. Settings
C. Insights
D. Security
正解:B
解説: (Pass4Test メンバーにのみ表示されます)
質問 6:
Which patterns are secret scanning validity checks available to?
A. Push protection patterns
B. High entropy strings
C. Partner patterns
D. Custom patterns
正解:C
解説: (Pass4Test メンバーにのみ表示されます)
質問 7:
If default code security settings have not been changed at the repository, organization, or enterprise level, which repositories receive Dependabot alerts?
A. Repositories owned by an enterprise account
B. Repositories owned by an organization
C. Private repositories
D. None
正解:D
解説: (Pass4Test メンバーにのみ表示されます)
質問 8:
What is a prerequisite to define a custom pattern for a repository?
A. Close other secret scanning alerts
B. Change the repository visibility to Internal
C. Specify additional match criteria
D. Enable secret scanning
正解:D
解説: (Pass4Test メンバーにのみ表示されます)
906 お客様のコメント





Yokoyama -
口コミを見てGitHubさんのこのGitHub-Advanced-Securityの問題集を買いました、入り口の入り口である基本的なところまで説明してありとても解りやすいと思いました、買ってよかったです