CISSP · Question #429
Which of the following objects should be removed FIRST prior to uploading code to public code repositories?
The correct answer is A. Security credentials. Security credentials are the objects that should be removed first prior to uploading code to public code repositories. Security credentials are any data or information that can be used to authenticate or authorize a user or a system, such as passwords, keys, tokens, certificates,
Question
Which of the following objects should be removed FIRST prior to uploading code to public code repositories?
Options
- ASecurity credentials
- BKnown vulnerabilities
- CInefficient algorithms
- DCoding mistakes
How the community answered
(38 responses)- A89% (34)
- B3% (1)
- C5% (2)
- D3% (1)
Explanation
Security credentials are the objects that should be removed first prior to uploading code to public code repositories. Security credentials are any data or information that can be used to authenticate or authorize a user or a system, such as passwords, keys, tokens, certificates, or hashes. Security credentials should never be exposed or stored in plain text in the source code, as they can be easily compromised by attackers who can access the public code repositories. Security credentials should be removed or replaced with dummy values before uploading code to public code repositories, and stored securely in a separate location, such as a vault or a configuration file.
Topics
Community Discussion
No community discussion yet for this question.