ExamTopics Logo
Mail Us[email protected]
Menu
Comptia Discussions
exam questions

Exam CAS-005 All Questions

View all questions & answers for the CAS-005 exam
Go to Exam

Exam CAS-005 topic 1 question 48 discussion

Actual exam question from CompTIA's CAS-005
Question #: 48
Topic #: 1
[All CAS-005 Questions]

A company recently acquired a SaaS company and performed a gap analysis. The results of the gap analysis Indicate security controls are absent throughout the SDLC and have led to several vulnerable production releases. Which of the following security tools best reduces the risk of vulnerable code being pushed to production in the future?

  • A. Static application security testing
  • B. Regression testing
  • C. Code signing
  • D. Sandboxing
Show Suggested Answer Hide Answer
Suggested Answer: A 🗳️
by vicbersong at April 29, 2025, 8:37 p.m.

Comments

Chosen Answer:
This is a voting comment (?). It is better to Upvote an existing comment if you don't have anything to add.
Switch to a voting comment New
Submit Cancel
vicbersong
1 week, 1 day ago
Selected Answer: A
❌ Why the others are not the best fit: B. Regression testing Checks if recent changes broke existing functionality — it’s not focused on security flaws. C. Code signing Verifies the integrity and authenticity of code, but doesn’t detect vulnerabilities in the code itself. D. Sandboxing Isolates potentially unsafe programs, useful at runtime, but doesn’t prevent vulnerable code from being deployed.
upvoted 1 times
...
vicbersong
1 week, 1 day ago
Selected Answer: A
✅ A. Static Application Security Testing (SAST) 🔍 Explanation: The scenario highlights a lack of security controls in the software development life cycle (SDLC), leading to vulnerabilities in production. The best way to prevent vulnerable code from reaching production is to: Identify and fix issues early in the development process. SAST is a tool used during the coding phase to analyze source code, bytecode, or binaries without executing the program. It helps developers detect security flaws early, when they’re cheaper and easier to fix — reducing the risk of deploying vulnerable applications.
upvoted 1 times
...
Community vote distribution
A (35%)
C (25%)
B (20%)
Other
Most Voted
A voting comment increases the vote count for the chosen answer by one.

Upvoting a comment with a selected answer will also increase the vote count towards that answer by one. So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.

SaveCancel
exam
Someone Bought Contributor Access for:
SY0-701
London, 1 minute ago