Free Microsoft GH-500 Actual Exam Questions - Question 14 Discussion
Assuming security and analysis features are not configured at the repository, organization, or
enterprise level, secret scanning is enabled on:
Maybe A makes the most sense since public repos are open and more vulnerable, so secret scanning would be default there to protect sensitive info without extra setup.
Looks like secret scanning turns on automatically for public repos, which matches option A. Private repos need manual setup, so that rules out the others. A it is.
Actually, it’s not about private or forks here. Secret scanning is automatically enabled on public repos to help catch sensitive info that might get exposed. Private repos don’t get this by default unless the feature is explicitly turned on at some level. So option A fits because it’s the only category where secret scanning kicks in without extra configuration. Options B, C, and D would require you to enable or configure secret scanning first.
Pretty sure it’s A. Public repositories get secret scanning enabled by default even if no other settings are configured.