Exam GitHub-Advanced-Security Topic 6 Question 3 Discussion

Actual exam question for GitHub's GitHub-Advanced-Security exam
Question #: 3
Topic #: 6
What should you do after receiving an alert about a dependency added in a pull request?

Suggested Answer: C Vote an answer

If an alert is raised on apull request dependency, best practice is toupdate the dependencyto a secure versionbeforemerging the PR. This prevents the vulnerable version from entering the main codebase.
Merging or deploying the PR without fixing the issue exposes your production environment to known risks.

by Wright at Mar 27, 2026, 04:18 AM

Comments

Chosen Answer:
This is a voting comment (?) , you can switch to a simple comment.
Switch to a voting comment New
Nick name: Submit Cancel
A voting comment increases the vote count for the chosen answer by one.

Upvoting a comment with a selected answer will also increase the vote count towards that answer by one. So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.

0
0
0
10