CAS-005 · Question #253
CAS-005 Question #253: Real Exam Question with Answer & Explanation
The correct answer is B: Enable new security and quality checks within a CI/CD pipeline.. Implementing security and quality checks in a CI/CD pipeline ensures that: - Container images are scanned for vulnerabilities before deployment. - Version control is enforced, preventing unauthorized changes. - Hashes validate image integrity.
Question
A security engineer is assisting a DevOps team that has the following requirements for container images: - Ensure container images are hashed and use version controls. - Ensure container images are up to date and scanned for vulnerabilities. Which of the following should the security engineer do to meet these requirements?
Options
- AEnable clusters on the container image and configure the mesh with ACLs.
- BEnable new security and quality checks within a CI/CD pipeline.
- CEnable audits on the container image and monitor for configuration changes.
- DEnable pulling of the container image from the vendor repository and deploy directly to operations.
Explanation
Implementing security and quality checks in a CI/CD pipeline ensures that: - Container images are scanned for vulnerabilities before deployment. - Version control is enforced, preventing unauthorized changes. - Hashes validate image integrity.
Community Discussion
No community discussion yet for this question.