ExamTopics Logo
Mail Us[email protected]
Menu
Microsoft Discussions
exam questions

Exam AZ-400 All Questions

View all questions & answers for the AZ-400 exam
Go to Exam

Exam AZ-400 topic 5 question 47 discussion

Actual exam question from Microsoft's AZ-400
Question #: 47
Topic #: 5
[All AZ-400 Questions]

DRAG DROP
-

You have a GitHub repository.

You need to configure Dependabot dependency scanning. The solution must meet the following requirements:

• Automatically open a pull request to resolve an alert.
• Automatically open a pull request when a dependency is updated.

What should you enable for each requirement? To answer, drag the appropriate features to the correct requirements. Each feature may be used once, more than once, or not at all. You may need to drag the split bar between panes or scroll to view content.

NOTE: Each correct selection is worth one point.

Show Suggested Answer Hide Answer
Suggested Answer:
by Atina6 at Oct. 3, 2023, 1:58 p.m.

Comments

Chosen Answer:
This is a voting comment (?). It is better to Upvote an existing comment if you don't have anything to add.
Switch to a voting comment New
Submit Cancel
Atina6
Highly Voted 1 year, 4 months ago
According the documentation security and version updates open automatically pull requests only. I would say: Security updates Version updates P.M. Although the sentence "Automatically open a pull request when a dependency is updated" doesn't make sense because a pull request is opened in order to update a dependency and Not after it's updated -> "When Dependabot identifies an outdated dependency, it raises a pull request to update the manifest to the latest version of the dependency" https://docs.github.com/en/code-security/dependabot/dependabot-version-updates/about-dependabot-version-updates
upvoted 20 times
oskarq
1 year, 4 months ago
Agree after reading the link Security updates Version updates If you enable security updates, Dependabot also raises pull requests to update vulnerable dependencies. When Dependabot identifies an outdated dependency, it raises a pull request to update the manifest to the latest version of the dependency
upvoted 8 times
...
...
vsvaid
Highly Voted 1 year, 1 month ago
Security update Version update
upvoted 11 times
...
Fadoua24
Most Recent 1 week ago
Hi all, I wanted to clarify the correct features for the Dependabot scanning question. Security updates automatically open pull requests to fix dependency vulnerabilities (alerts). Version updates automatically open pull requests when a dependency version is updated. The dependency graph is just a visualization tool and does NOT create or open pull requests. So, for the requirements: • Automatically open a pull request to resolve an alert → Security updates • Automatically open a pull request when a dependency is updated → Version updates I hope this helps! Thanks.
upvoted 1 times
...
Thameur01
2 months, 3 weeks ago
Security updates Version updates
upvoted 1 times
...
Community vote distribution
A (35%)
C (25%)
B (20%)
Other
Most Voted
A voting comment increases the vote count for the chosen answer by one.

Upvoting a comment with a selected answer will also increase the vote count towards that answer by one. So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.

SaveCancel