These are NOT real questions from the exam but quite close enough to what you can get to help you to prepare it and obtain the certification
- Support GitHub Enterprise for users and key stakeholders (15% of the exam)
- Manage user identities and GitHub authentication (20% of the exam)
- Describe how GitHub is deployed, distributed, and licensed (5% of the exam)
- Manage access and permissions based on membership (20% of the exam)
- Enable secure software development and ensure compliance (15% of the exam)
- Manage GitHub Actions (20% of the exam)
- Manage GitHub Packages (5% of the exam)
show
Maintainer or admin
show
Yes and it is a general pratice to use them to reflect the current enterprise internal's organization.
show
JSON and CSV
show
owner and billing manager
On GitHub Enterprise Server, which command lines allows to generate a logs package to communicate to the support ?
show
ssh -p 122 admin@hostname -- 'ghe-support-bundle -o' > support-bundle.tgz
show
Yes, for instance, Azure Active Directory but other like ADFS, Okta, OneLogin, etc
show
- username/password
- PAT (Personal Access Token)
- SSH keys
- Deploy keys
show
SAML SSO
show
- SMS
- TOTP app
- security keys
show
SCIM
show
10000
- Maximum number of members in a GitHub team: 5000
- Maximum number of members in a GitHub organization: 10000
- Maximum number of teams in a GitHub organization: 1500
show
yes.
show
Yes for public repositories. For private repositories, you have free minutes of usage offered per month
You plan on using GitHub Actions to build, test, and deliver your cross-platform code. Which of the following platforms will be the most expensive to use?
show
macOS. It cost 10 times (in terms of minute of compute) the price of a linux minute
show
- GitHub Enterprise Support (Included with Enterprise Cloud and Enterprise Server)
- GitHub Enterprise Premium support
- GitHub Enterprise Premium Plus support
show
- Accesses your organization or repository settings.
- Changes permissions.
- Adds or removes users in an organization, repository, or team.
- Promotes users to admin.
- Changes permissions of a GitHub App.
show
No, it covers Account, Security, and Abuse issues
show
Yes. It is disabled by default but it's here and it contains already some built-in actions created by GitHub. It does NOT require acces to Internet to work because you can sync/download the Actions locally.
show
yes
show
- member
- maintainer
show
- owner
- member
- billing manager
Which role access should you give to a contributor with full control on the repo except access to sensitive or destructive actions ?
show
maintainer because admin role would for instance allow to delete a repo
What is the appropriate repository permission level for contributors who will actively push changes to your repository
show
write
show
Yes if the "Read" access is defined as default role in "base permissions" in the organization's settings
show
triage
show
You can launch projects from a repository on GitHub.com to your server by using a deploy key, which is an SSH key that grants access to a single repository. GitHub attaches the public part of the key directly to your repository instead of a personal account, and the private part of the key remains on your server.
show
One technique to help avoid the majority of this risk is to build and maintain .gitignore files
show
No. You can overwrite a commit but you must consider the data unsecure once it has been commited. If it's a secret/password, then you must renew it.
How can you automatically assign specific persons as reviewers when a part of the code is modified ?
show
At the organization level, in "Member privileges" settings, disallow the creation of public repositories.
If you plan to communicate about your security policy, like disclosing vulnerabilities, where should you store your policy publicly ?
show
In the root of your repository in a file named SECURITY.md.
In which part of your repository can you find the dependency graph listing all the packages your repo depends on ?
show
In the Insights tab and then Dependency graph.
Which feature of GitHub scan your repo and alerts you in case of detected vulnerabilities in your dependencies ?
show
GitHub Security Advisories.
Which feature of GitHub scan your repo and alerts you in case of detected vulnerabilities and automatically create a pull request to fix it ?
show
Dependabot.
show
If you want to act before a commit, you must use pre-commit hook which allow to scan the code before the commit.
show
git filter-repo & BFG Repo-Cleaner
show
Product affected and severity
show
steps:
- name: Hello world action
with: # Set the secret as an input
super_secret: ${{ secrets.MY_SECRET }}
show
- a workflow file with a yml extension (my-workflow.yml)
- a propertires files with ".properties.json" extention (my-workflow.properties.json)
Both files must have the same name.
show
$default-branch
on:
push:
branches: [ $default-branch ]
show
Yes, using Policies and restricting to local actions only.
show
Yes, using Policies and restricting to specific actions (menu "Allow select actions").
show
Yes, but they may not be the last version of them.
Which feature allow to provide already premade templaces to users when they want to create a workflow ?
show
It's called a workflow template
show
- self-hosted
- the os: linux, windows, or macOS
- the CPU architecture: x64 , ARM, or ARM64
How do you enforce your workflow running on a specific self-hosted agent running on Linux with ARM ?
show
runs-on: [self-hosted, linux, ARM64]
show
In the _diag folder.
show
Yes.
show
docker push ghcr.io/OWNER/IMAGE_NAME:latest
show
- npm, a NodeJS package manager
- NuGet, the .NET package manager
- RubyGems
- Maven and Gradle, two package managers for Java
- When I want to share code between methods of my application.
- When I want to share container images among developers of your team.
- When I want to publish a small code library as an open-source project.
show
When I want to share code between methods of my application