Online Access Free GH-500 Practice Test

Which of the following steps should you follow to integrate CodeQL into a third-party continuous integration system? (Each answer presents part of the solution. Choose three.)

• A.Analyze code
• B.Install the CLI
• C.Write queries
• D.Process alerts
• E.Upload scan results

A secret scanning alert should be closed as "used in tests" when a secret is:

• A.In the readme.md file.
• B.In a test file.
• C.Solely used for tests.
• D.Not a secret in the production environment.

What are Dependabot security updates?

• A.Automated pull requests that keep your dependencies updated, even when they don't have any vulnerabilities
• B.Automated pull requests that help you update dependencies that have known vulnerabilities
• C.Compatibility scores to let you know whether updating a dependency could cause breaking changes to your project
• D.Automated pull requests to update the manifest to the latest version of the dependency

Where can you use CodeQL analysis for code scanning? (Each answer presents part of the solution. Choose two.)

• A.In the Files changed tab of the pull request
• B.In a third-party Git repository
• C.In an external continuous integration (CI) system
• D.In a workflow

What role is required to change a repository's code scanning severity threshold that fails a pull request status check?

• A.Triage
• B.Maintain
• C.Admin
• D.Write