Configure and use secret scanning Questions
Practice questions for Configure and use secret scanning topic in GitHub Advanced Security. 29 questions covering this domain.
If a contributor bypasses repository push protection and chooses `I'll fix it later`, what alert state does GitHub create?
For which repository type does secret scanning run automatically for free?
Which activity can repository push protection block when a supported secret is detected?
A repository administrator defines a custom secret pattern and wants push protection to use it immediately. What must happen first?
Which statement about secret scanning scope is correct?
Which statement correctly describes push protection for users?
An organization owner wants to test a new organization-level custom pattern without creating alerts across the whole organization. What dry-run scope ...
Which set lists the validity check states GitHub can show for a secret scanning alert?
A repository adds 1400 entries to paths-ignore in .github/secret_scanning.yml and also tries to exclude a 2 MB generated file from push protection. Wh...
What happens when GitHub detects a partner secret in a repository?
Which detail is available to reviewers when they inspect a delegated bypass request?
A token owner rotated a leaked credential and wants GitHub to verify the latest status of the alert now. What should the maintainer do?
An organization runs a historical secret scan on one of its repositories. When the scan finishes with no secrets found, who is notified?
How long does a delegated bypass request for push protection remain available before it expires?
Which statement accurately describes generic secret alerts?
A maintainer rotated a supported secret after an alert was created and wants GitHub to check the latest status immediately. Which action should they u...
A contributor drags a file into the GitHub web UI for a public repository and GitHub blocks the upload because a supported token was found. Which cont...
A delegated bypass request for push protection has been waiting for review for eight days. What is its status?
A repository adds 1200 entries under paths-ignore in .github/secret_scanning.yml and expects push protection to inspect a generated file that is 2 MB ...
GitHub detects a supported partner secret in a public repository. What happens next?
Sign in to see all 29 questions
Create a free account to browse all questions — completely free during our launch phase.