Practice Test 3 | Designing And Implementing Microsoft DevOps Solutions | AZ-400 | Dumps | Mock Test

Question 26

A company wants to follow the Azure DevOps strategy for its development and deployment process. They want to ensure that during the development phase the following requirements are taken care of:

Scanning of 3rd party packages in the code base for vulnerabilities
Checking for unlicensed libraries in the code base

The company decides to implement these checks as part of the Continuous Integration process.

Would this fulfill the requirement?

A. Yes
B. No

Answer

Answer – A

For both the requirements, we need to perform a Software Composition Analysis (SCA) scan. This scan should be part of the Continuous Integration process to check these vulnerabilities.

The Microsoft documentation mentions the following representation on the CI/CD pipeline.

For more information on software composition analysis in the CI/CD pipeline, please visit the following URL-

Pages: 1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 23 24 25 26 27 28 29 30 31 32 33 34 35 36 37 38 39 40 41 42 43 44 45 46 47 48 49 50 51 52 53 54 55

AZ-400

Practice Test 3 | Designing And Implementing Microsoft DevOps Solutions | AZ-400 | Dumps | Mock Test

Question 26

Answer

Ads Blocker Detected!!!