Topic 1 Question 166
2 つ選択Your company places a high value on being responsive and meeting customer needs quickly. Their primary business objectives are release speed and agility. You want to reduce the chance of security errors being accidentally introduced. Which two actions can you take?
Ensure every code check-in is peer reviewed by a security SME
Use source code security analyzers as part of the CI/CD pipeline
Ensure you have stubs to unit test all interfaces between components
Enable code signing and a trusted binary repository integrated with your CI/CD pipeline
Run a vulnerability security scanner as part of your continuous-integration /continuous-delivery (CI/CD) pipeline
ユーザの投票
コメント(17)
B&E Code signing only verifies the author. In other words it only check who you are, but not what have you done
👍 36PeppaPig2021/08/19I think answer is D & E.
👍 30rishab862021/06/03B. Use source code security analyzers as part of the CI/CD pipeline: By using source code security analyzers as part of the CI/CD pipeline, you can automatically detect and alert on security vulnerabilities in the code as it is being developed, which can help prevent security errors from being introduced.
E. Run a vulnerability security scanner as part of your continuous-integration /continuous-delivery (CI/CD) pipeline: By running a vulnerability security scanner as part of the CI/CD pipeline, you can automatically detect and alert on security vulnerabilities in the application as it is being deployed, which can help prevent security errors from being introduced.
👍 2omermahgoub2022/12/26
シャッフルモード