Posted by: Pdfprep
Post Date: January 31, 2021
Which two practices help make the security of an application a more integral part of the software development lifecycle? (Choose two.)
A . Add a step to the CI/CD pipeline that runs a dynamic code analysis tool during the pipeline execution.
B . Add a step to the CI/CD pipeline that runs a static code analysis tool during the pipeline execution.
C . Use only software modules that are written by the internal team.
D . Add a step to the CI/CD pipeline to modify the release plan so that updated versions of the software are made available more often.
E . Ensure that the code repository server has enabled drive encryption and stores the keys on a Trusted Platform Module or Hardware Security Module.
Answer: AE
Leave a Reply