nerdexam
(ISC)2

CISSP · Question #429

Which of the following objects should be removed FIRST prior to uploading code to public code repositories?

The correct answer is A. Security credentials. Security credentials are the objects that should be removed first prior to uploading code to public code repositories. Security credentials are any data or information that can be used to authenticate or authorize a user or a system, such as passwords, keys, tokens, certificates,

Submitted by javi_es· Mar 5, 2026Software Development Security

Question

Which of the following objects should be removed FIRST prior to uploading code to public code repositories?

Options

  • ASecurity credentials
  • BKnown vulnerabilities
  • CInefficient algorithms
  • DCoding mistakes

How the community answered

(38 responses)
  • A
    89% (34)
  • B
    3% (1)
  • C
    5% (2)
  • D
    3% (1)

Explanation

Security credentials are the objects that should be removed first prior to uploading code to public code repositories. Security credentials are any data or information that can be used to authenticate or authorize a user or a system, such as passwords, keys, tokens, certificates, or hashes. Security credentials should never be exposed or stored in plain text in the source code, as they can be easily compromised by attackers who can access the public code repositories. Security credentials should be removed or replaced with dummy values before uploading code to public code repositories, and stored securely in a separate location, such as a vault or a configuration file.

Topics

#secure coding#code repositories#credential management#information leakage

Community Discussion

No community discussion yet for this question.

Full CISSP Practice