A Copilot coding agent creates a draft pull request that updates authentication middleware. The PR passes unit tests and linting. The diff changes token validation, session expiry, and an authorization helper used by admin routes. The team wants automation to keep running, but it must not let this type of change merge without a qualified reviewer. Which action should require human judgment?
Choose an answer
Tap an option to check your answer.
Correct answer: Approving the security-sensitive pull request.
Why this is the answer
Approving the security-sensitive pull request is the critical action that requires human judgment. Changes to authentication middleware, token validation, and session expiry directly impact application security. While automated tests can verify functionality and code style, they cannot fully assess potential security vulnerabilities, architectural implications, or compliance with security policies. A qualified human reviewer is essential to ensure these critical changes do not introduce risks. Running unit tests, posting Copilot feedback, and updating the branch are automated or informational steps that do not involve the final decision to merge potentially risky code.
Pass your exam — without the endless answer hunt
Get every verified question and explanation for this exam in one place, and save hours of prep. 1,000+ certifications · 20+ languages · free to start.
Pass your exam faster → No card needed