New Year Sale 2026! Hurry Up, Grab the Special Discount - Save 25% - Ends In 00:00:00 Coupon code: SAVE25
Welcome to Pass4Success

- Free Preparation Discussions
Mail Us support@pass4success.com
Location US
Mob_nav_barsMENU

Microsoft GH-100 Exam - Topic 7 Question 2 Discussion

Actual exam question for Microsoft's GH-100 exam
Question #: 2
Topic #: 7
[All GH-100 Questions]

Why is a GitHub App preferred over a PAT for machine authentication?

Show Suggested Answer Hide Answer
Suggested Answer: B

GitHub Apps issue short-lived installation tokens that you scope to only the permissions and repositories your automation needs, reducing blast radius and automatically rotating credentials.


by Charlena at Aug 15, 2025, 07:55 AM

Limited Time Offer

25%

Off

Get Premium GH-100 Questions as Interactive Web-Based Practice Test or PDF

Contribute your Thoughts:

0/2000 characters
Submit Cancel
Jose
2 months ago
I think PATs are still useful for some cases though.
upvoted 0 times
...
Aaron
3 months ago
Totally agree, PATs are way less secure.
upvoted 0 times
...
Viva
3 months ago
GitHub Apps have scoped access, much safer!
upvoted 0 times
...
Rory
3 months ago
Wait, PATs can't be used in Actions? That's surprising!
upvoted 0 times
...
Izetta
3 months ago
GitHub Apps are definitely the way to go for better security.
upvoted 0 times
...
Dallas
3 months ago
I thought PATs could be used in GitHub Actions, but maybe they just have limitations compared to GitHub Apps?
upvoted 0 times
...
Willard
4 months ago
I practiced a question similar to this, and I think it was about how GitHub Apps can have time-limited tokens, which makes them safer than PATs.
upvoted 0 times
...
France
4 months ago
I remember something about PATs being less secure, but I can't recall if it's related to their scope or something else.
upvoted 0 times
...
Rodolfo
4 months ago
I think GitHub Apps are better because they have more controlled access, but I'm not sure about the specifics of the tokens.
upvoted 0 times
...
Tawny
4 months ago
I'm not sure about this one. I'll need to do some research on the specific use cases and advantages of GitHub Apps versus PATs.
upvoted 0 times
...
Paz
4 months ago
I've got this! GitHub Apps are preferred because they have scoped access, which is more secure than the broad permissions of a PAT.
upvoted 0 times
...
Bobbye
5 months ago
Wait, I'm a bit confused. Aren't PATs also used for machine authentication? I'll need to review the differences between the two.
upvoted 0 times
...
Irma
5 months ago
Okay, I think I know the answer to this. GitHub Apps have time-limited installation tokens, which is more secure than a PAT.
upvoted 0 times
...
Willodean
5 months ago
Hmm, this is a tricky one. I'll need to think carefully about the differences between GitHub Apps and PATs.
upvoted 0 times
...
Filiberto
6 months ago
I think a GitHub App is preferred because it has time-limited installation tokens with scoped access.
upvoted 0 times
...
Winfred
7 months ago
D) PATs support fewer GitHub APIs than Apps? That's news to me. Gotta keep up with the latest GitHub authentication trends!
upvoted 0 times
...
Elli
7 months ago
Hmm, I was leaning towards C) but B) makes a lot of sense too. Time-limited tokens are a great way to limit potential damage from compromised credentials.
upvoted 0 times
Makeda
5 months ago
I agree, having time-limited tokens adds an extra layer of security.
upvoted 0 times
...
Teresita
6 months ago
B) GitHub Apps have time-limited installation tokens with scoped access
upvoted 0 times
...
...
Wilford
7 months ago
B) GitHub Apps have time-limited installation tokens with scoped access - this is a huge security benefit over PATs!
upvoted 0 times
Mauricio
5 months ago
I agree, having time-limited tokens is much more secure.
upvoted 0 times
...
...

Save Cancel