GH-100 Free Practice Test

When a token is used to perform actions across different GitHub resources, how is this reflected in audit logs?

1. A. Each API action made with the token generates a separate audit log entry
2. B. Only the first repository accessed is recorded
3. C. GitHub creates a ZIP archive of all token activity
4. D. The audit log stores only the token name and not its actions

Correct Answer: A
Each API call authenticated with a token generates its own audit-log event, so you'll see a distinct entry for every action performed across different resources, each annotated with the token's hashed ID, actor, and source IP.

What additional capability does secret scanning offer for private repositories on GitHub Enterprise Cloud?

1. A. Allows custom pattern definitions for internal secret formats.
2. B. Disables any code that contains a secret.
3. C. Rewrites history to remove secrets.
4. D. Revokes GitHub access tokens automatically.

Correct Answer: A
Secret scanning in private repositories on GitHub Enterprise Cloud lets you define and use custom regular‑expression patterns - so you can detect internal or proprietary secret formats beyond the default partner‑provided types.

What will happen if Dependabot discovers a vulnerable transitive dependency in a repository?

1. A. It creates a pull request to update the direct dependency to a version that resolves the vulnerability.
2. B. It opens a pull request to update the affected package directly, regardless of version compatibility.
3. C. It automatically removes the package from the repository.
4. D. It sends an email to the repository owner but does not alter code.

Correct Answer: A
Dependabot will automatically open a pull request that updates the direct dependency to a version which, in turn, resolves (or removes) the vulnerable transitive dependency—ensuring the fix is applied via your declared dependencies.

How does GitHub support compliance requirements for enterprises?

1. A. GitHub provides configurable controls such as an audit log, SAML authentication, and enterprise rulesets.
2. B. GitHub disables all external collaboration features.
3. C. GitHub only allows those with repository owner (admin) permissions to write changes to repositories.
4. D. GitHub automatically encrypts user passwords in plaintext for quick access.

Correct Answer: A
GitHub Enterprise gives you a suite of configurable controls - like a comprehensive audit log, enforced SAML single sign‑on, and enterprise‑level rulesets - that you can tailor and enforce to meet your organization's compliance mandates.

Which of the following is a key benefit of setting default read permissions across organizations?

1. A. Suits environments where all users need write access.
2. B. Improves collaboration by allowing users to modify content directly.
3. C. Increases efficiency in content creation and updates.
4. D. Enhances security by minimizing unintended modifications.

Correct Answer: D
Enforcing a default of Read for organization members ensures they can view content without the ability to push changes, reducing the risk of accidental or unauthorized modifications.