ExamTopics Logo
Mail Us[email protected]
Menu
Comptia Discussions
exam questions

Exam CAS-004 All Questions

View all questions & answers for the CAS-004 exam
Go to Exam

Exam CAS-004 topic 1 question 444 discussion

Actual exam question from CompTIA's CAS-004
Question #: 444
Topic #: 1
[All CAS-004 Questions]

A senior security analyst is helping the development team improve the security of an application that is being developed. The developers use third-party libraries and applications. The software in development used old, third-party packages that were not replaced before market distribution. Which of the following should be implemented into the SDLC to resolve the issue?

  • A. Software composition analysis
  • B. A SCAP scanner
  • C. A SAST
  • D. A DAST
Show Suggested Answer Hide Answer
Suggested Answer: A 🗳️
by HereToStudy at Sept. 23, 2024, 6:38 p.m.

Comments

Chosen Answer:
This is a voting comment (?). It is better to Upvote an existing comment if you don't have anything to add.
Switch to a voting comment New
Submit Cancel
Pesos
8 months ago
3rd party = SCA
upvoted 1 times
...
HereToStudy
9 months ago
Selected Answer: A
Software composition analysis (SCA) helps identify and manage third-party libraries and their vulnerabilities, ensuring that outdated or insecure components are updated or replaced before deployment.
upvoted 4 times
...
Community vote distribution
A (35%)
C (25%)
B (20%)
Other
Most Voted
A voting comment increases the vote count for the chosen answer by one.

Upvoting a comment with a selected answer will also increase the vote count towards that answer by one. So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.

SaveCancel