CompTIACompTIA
PT0-002 · Question #14
PT0-002 Question #14: Real Exam Question with Answer & Explanation
The correct answer is D: Code context for instances of unsafe type-casting operations. Developers would be interested in knowing the wrong code instances used.
Reporting and Communication
Question
Which of the following would MOST likely be included in the final report of a static application- security test that was written with a team of application developers as the intended audience?
Options
- AExecutive summary of the penetration-testing methods used
- BBill of materials including supplies, subcontracts, and costs incurred during assessment
- CQuantitative impact assessments given a successful software compromise
- DCode context for instances of unsafe type-casting operations
Explanation
Developers would be interested in knowing the wrong code instances used.
Topics
#Static Application Security Testing#Security Report#Developer Audience#Vulnerability Remediation
Community Discussion
No community discussion yet for this question.