A Copilot-generated pull request updates infrastructure code for a production network rule. The workflow should require a human approval before applying the change. The apply job did not start, and the developer wants to know why. Which option best explains the workflow state? Select one answer.
Workflow: apply-prod-network-change
Event: pull_request
Actor: github-copilot[bot]
Job: validate-plan
Status: success
Job: apply-production
Environment: production-network
Status: waiting
Deployment protection rules:
Required reviewers: secops-admins
Prevent self-review: enabled
Message:
This job is waiting for review from required reviewers.
Environment secrets are not available until approval is granted.Choose an answer
Tap an option to check your answer.
Correct answer: The environment approval gate is blocking execution.
Why this is the answer
The correct answer is that the environment approval gate is blocking execution. The workflow output clearly states, "This job is waiting for review from required reviewers," and "Environment secrets are not available until approval is granted." This indicates that the apply-production job, which targets the production-network environment, is paused due to a configured deployment protection rule requiring review by secops-admins. The bot actor can create pull requests, as evidenced by the successful validate-plan job. The workflow trigger did not skip the apply job; it is in a waiting state. The job did not fail before environment evaluation; it successfully reached the environment and is awaiting approval.
Pass your exam — without the endless answer hunt
Get every verified question and explanation for this exam in one place, and save hours of prep. 1,000+ certifications · 20+ languages · free to start.
Pass your exam faster → No card needed