ExamTopics Logo
Mail Us[email protected]
Menu
Comptia Discussions
exam questions

Exam CS0-003 All Questions

View all questions & answers for the CS0-003 exam
Go to Exam

Exam CS0-003 topic 1 question 15 discussion

Actual exam question from CompTIA's CS0-003
Question #: 15
Topic #: 1
[All CS0-003 Questions]

During security scanning, a security analyst regularly finds the same vulnerabilities in a critical application. Which of the following recommendations would best mitigate this problem if applied along the SDLC phase?

  • A. Conduct regular red team exercises over the application in production
  • B. Ensure that all implemented coding libraries are regularly checked
  • C. Use application security scanning as part of the pipeline for the CI/CD flow
  • D. Implement proper input validation for any data entry form
Show Suggested Answer Hide Answer
Suggested Answer: C 🗳️
by attesco at Aug. 1, 2023, 7:37 a.m.

Comments

Chosen Answer:
This is a voting comment (?). It is better to Upvote an existing comment if you don't have anything to add.
Switch to a voting comment New
Submit Cancel
nmap_king_22
Highly Voted 8 months ago
Selected Answer: C
C. Use application security scanning as part of the pipeline for the CI/CD flow. Explanation: Continuous Integration/Continuous Deployment (CI/CD) pipelines are an integral part of modern software development practices. By incorporating application security scanning into the CI/CD pipeline, vulnerabilities can be identified and addressed at various stages of development, including during the build and deployment processes.
upvoted 10 times
...
ms123451
Highly Voted 8 months, 1 week ago
Selected Answer: C
Code will not be published if it has to be mitigated in early stage of CI/CD therefore stopping it from happening over and over
upvoted 5 times
...
newenglandgirl1078
Most Recent 2 weeks, 2 days ago
Selected Answer: C
The answer is C. Add security scans to the CI/CD pipeline catches issues early during development.
upvoted 1 times
...
eapau6022
5 months ago
The answer is C Using application security scanning as part of the pipeline for the continuous integration/continuous delivery (CI/CD) flow can help mitigate the problem of finding the same vulnerabilities in a critical application during security scanning
upvoted 1 times
...
Underdog79198
8 months, 3 weeks ago
Selected Answer: C
By using security scanning as part of the CI/CD pipeline, you address vulnerabilities early in the development cycle
upvoted 3 times
...
attesco
9 months, 1 week ago
Selected Answer: B
If the analyst finds vulnerability in each application . Then the software developer must have been using a code library that is full of errors . To remediate is to check those coding library
upvoted 1 times
Uncle_Lucifer
7 months, 3 weeks ago
Hehe. What does code error have to do with vulnerability? The best thing is for those pushing the CI/CD to catch it before it is delivered - option C
upvoted 2 times
...
...
Community vote distribution
A (35%)
C (25%)
B (20%)
Other
Most Voted
A voting comment increases the vote count for the chosen answer by one.

Upvoting a comment with a selected answer will also increase the vote count towards that answer by one. So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.

SaveCancel
exam
Someone Bought Contributor Access for:
SY0-701
London, 1 minute ago