Deal of The Day! Hurry Up, Grab the Special Discount - Save 25% - Ends In 00:00:00 Coupon code: SAVE25
Welcome to Pass4Success

- Free Preparation Discussions
Mail Us support@pass4success.com
Location US
Mob_nav_barsMENU

Microsoft AZ-400 Exam - Topic 2 Question 81 Discussion

You manage code by using GitHub.You need to ensure that repository owners are notified if a new vulnerable dependency or malware is found in their repository.What should you do?
B) Configure Dependabot alerts.
A) Configure branch protection rules for each repository.
C) Configure CodeQL scanning actions.
D) Subscribe all the repository owners to the GitHub Advisory Database.

Microsoft AZ-400 Exam - Topic 2 Question 81 Discussion

Actual exam question for Microsoft's AZ-400 exam
Question #: 81
Topic #: 2
[All AZ-400 Questions]

You manage code by using GitHub.

You need to ensure that repository owners are notified if a new vulnerable dependency or malware is found in their repository.

What should you do?

Show Suggested Answer Hide Answer
Suggested Answer: B

by Devorah at Jul 25, 2023, 04:52 AM

Limited Time Offer

25%

Off

Get Premium AZ-400 Questions as Interactive Web-Based Practice Test or PDF

Contribute your Thoughts:

0/2000 characters
Submit Cancel
Lawrence
6 months ago
D seems unnecessary, just use the built-in alerts!
upvoted 0 times
...
Chery
7 months ago
Wait, can you really rely on Dependabot for everything?
upvoted 0 times
...
Ben
7 months ago
A won't notify about vulnerabilities, just branch rules.
upvoted 0 times
...
Barrie
7 months ago
I think C is better for scanning vulnerabilities.
upvoted 0 times
...
Suzi
7 months ago
Definitely B, Dependabot alerts are the way to go!
upvoted 0 times
...
Dallas
8 months ago
Subscribing to the GitHub Advisory Database sounds familiar, but I don't think it directly notifies repository owners about vulnerabilities.
upvoted 0 times
...
Gerri
8 months ago
I feel like branch protection rules are more about managing code changes rather than vulnerability notifications.
upvoted 0 times
...
Regenia
8 months ago
I'm not entirely sure, but I remember something about CodeQL scanning being useful for security issues.
upvoted 0 times
...
Rex
8 months ago
I think Dependabot alerts might be the right choice here since they specifically notify about vulnerable dependencies.
upvoted 0 times
...
Malcolm
8 months ago
Okay, I think I've got it. The bottleneck statistics can show a variety of states, including Source, Proxy, Network, Source WAN Accelerator, Target WAN Accelerator, and Target. So I'll go with option C.
upvoted 0 times
...
Vilma
8 months ago
I'm pretty confident the automated installer would be the safest bet here. It's designed to handle these types of installation challenges, so I think that's the way I'll go.
upvoted 0 times
...
Izetta
8 months ago
I'm a bit confused by this question. Using slang to put the customer at ease doesn't seem like a great idea to me. I'm going to rule out option D for sure.
upvoted 0 times
...
Sina
8 months ago
I think the cash and bond offers present certain values, but I'm not convinced that guarantees they're better than the share exchange.
upvoted 0 times
...
Florinda
8 months ago
Hmm, I'm not sure about this one. I'll have to think it through carefully.
upvoted 0 times
...

Save Cancel