nerdexam
ExamsGH-500Questions#10
MicrosoftMicrosoft

GH-500 · Question #10

GH-500 Question #10: Real Exam Question with Answer & Explanation

The correct answer is B: Revoke the secret.. Remediating a leaked secret in your repository Revoke the secret It is not sufficient to simply remove the secret from your codebase. The most important remediation step is revoking the secret with the secret's provider. By revoking the secret, you drastically reduce the potentia

Best Practices and Remediation

Question

Which of the following is the best way to dispose of a compromised secret?

Options

  • ACreate a new secret.
  • BRevoke the secret.
  • CUpdate any services that use the secret.
  • DRemove the secret from the code base.

Explanation

Remediating a leaked secret in your repository Revoke the secret It is not sufficient to simply remove the secret from your codebase. The most important remediation step is revoking the secret with the secret's provider. By revoking the secret, you drastically reduce the potential for the secret to be exploited. You should consider any leaked secret to be immediately compromised and it is essential that you undertake proper remediation steps, such as revoking the secret. Simply removing the secret from the codebase, pushing a new commit, or deleting and recreating the repository do not prevent the secret from being exploited.

Topics

#Secret remediation#Compromised secrets#Security best practices

Community Discussion

No community discussion yet for this question.

Sign up to join the discussion
Full GH-500 PracticeBrowse All GH-500 Questions