ExamTopics Logo
Mail Us[email protected]
Menu
Microsoft Discussions
exam questions

Exam AZ-400 All Questions

View all questions & answers for the AZ-400 exam
Go to Exam

Exam AZ-400 topic 1 question 22 discussion

Actual exam question from Microsoft's AZ-400
Question #: 22
Topic #: 1
[All AZ-400 Questions]

Your company has an Azure DevOps project, which includes a build pipeline that makes use of roughly fifty open source libraries.
You have been tasked with making sure that you are able to scan project for common security weaknesses in the open source libraries.
Which of the following actions should you take?

  • A. You should create a build task and use the WhiteSource Bolt service.
  • B. You should create a deployment task and use the WhiteSource Bolt service.
  • C. You should create a build task and use the Chef service.
  • D. You should create a deployment task and use the Chef service.
Show Suggested Answer Hide Answer
Suggested Answer: A 🗳️
by hikhatri at July 16, 2021, 2:30 a.m.

Comments

Chosen Answer:
This is a voting comment (?). It is better to Upvote an existing comment if you don't have anything to add.
Switch to a voting comment New
Submit Cancel
jojom19980
Highly Voted 3 years, 4 months ago
yes , in build stage
upvoted 8 times
...
hikhatri
Highly Voted 3 years, 4 months ago
The given answer is correct
upvoted 6 times
...
FeriAZ
Most Recent 8 months, 4 weeks ago
Selected Answer: A
Since you need to scan your codebase during the build process to identify vulnerabilities in open-source libraries, the most suitable option is: A. You should create a build task and use the WhiteSource Bolt service. This approach leverages the build task within your Azure DevOps pipeline, ensuring the scan happens early in the development lifecycle, allowing you to address potential vulnerabilities before deployment. WhiteSource Bolt is a specific solution designed to address your exact requirement of scanning open-source libraries for vulnerabilities.
upvoted 1 times
...
yana_b
1 year, 3 months ago
Selected Answer: A
Create a build task and use the WhiteSource Bolt service.
upvoted 1 times
...
zellck
1 year, 5 months ago
Selected Answer: A
A is the answer. https://learn.microsoft.com/en-us/visualstudio/subscriptions/vs-whitesource
upvoted 3 times
zellck
1 year, 5 months ago
https://marketplace.visualstudio.com/items?itemName=whitesource.whitesource WhiteSource integrates with your CI servers, build tools and repositories to detect all open source components in your software, without ever scanning your code. It provides you with real-time alerts on vulnerable or problematic components, generates comprehensive up-to-date reports in one-click and enables you to streamline your entire open source management process with automated policies.
upvoted 1 times
...
...
zellck
1 year, 5 months ago
A is the answer. https://learn.microsoft.com/en-us/visualstudio/subscriptions/vs-whitesource
upvoted 1 times
...
nasmieci
2 years, 2 months ago
Selected Answer: A
A is correct answer
upvoted 1 times
...
syu31svc
2 years, 3 months ago
Selected Answer: A
C and D are out for sure Between A and B, A is correct Build task not deployment
upvoted 2 times
...
Govcomm
2 years, 4 months ago
Build task with WhilteSource Bolt
upvoted 1 times
...
Eltooth
2 years, 6 months ago
Selected Answer: A
A is correct answer.
upvoted 2 times
...
UnknowMan
2 years, 6 months ago
Selected Answer: A
Correct
upvoted 1 times
...
Mcelona
2 years, 7 months ago
Selected Answer: A
correct
upvoted 1 times
...
rdemontis
2 years, 8 months ago
Selected Answer: A
correct, whitesource is the tool and it should be used on CI phase.
upvoted 2 times
...
Community vote distribution
A (35%)
C (25%)
B (20%)
Other
Most Voted
A voting comment increases the vote count for the chosen answer by one.

Upvoting a comment with a selected answer will also increase the vote count towards that answer by one. So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.

SaveCancel