nerdexam
Microsoft

AZ-400 · Question #140

A team currently makes use of Docker containers for building their application. The application lifecycle also makes use of Azure Devops. Exploits need to be detected in the Docker images before the c

The correct answer is C. Ensure a scheduled task runs against the image registry to analyse the images. It's always good to have an on-going process to analyse the images in the image registry itself. There are some points also given in a whitepaper which relates to security for containers Options A and B are incorrect since this would be too late to detect issues in the applicatio

Submitted by rohit_dlh· Mar 6, 2026Develop a security and compliance plan

Question

A team currently makes use of Docker containers for building their application. The application lifecycle also makes use of Azure Devops. Exploits need to be detected in the Docker images before the container can be used. These exploits must be detected as early on in the lifecycle as possible. Which of the following would you configure as part of the lifecycle?

Exhibit

AZ-400 question #140 exhibit

Options

  • AEnsure a scheduled task runs against the production container in the continuous deployment
  • BEnsure a scheduled task runs against the staging container in the continuous deployment
  • CEnsure a scheduled task runs against the image registry to analyse the images
  • DRun manual tasks to analyse the docker containers in the planning phase

How the community answered

(34 responses)
  • A
    12% (4)
  • B
    3% (1)
  • C
    79% (27)
  • D
    6% (2)

Explanation

It's always good to have an on-going process to analyse the images in the image registry itself. There are some points also given in a whitepaper which relates to security for containers Options A and B are incorrect since this would be too late to detect issues in the application Option D is incorrect because it is inefficient to use manual processes. https://azure.microsoft.com/en-us/resources/container-security-in-microsoft-azure/en-us/

Topics

#Docker security#container image scanning#image registry#vulnerability detection

Community Discussion

No community discussion yet for this question.

Full AZ-400 Practice