CompTIA Security+ (SY0-601) — Question 727

Which of the following is the MOST effective way to detect security flaws present on third-party libraries embedded on software before it is released into production?

Answer options

• A. Employ different techniques for server- and client-side validations
• B. Use a different version control system for third-party libraries
• C. Implement a vulnerability scan to assess dependencies earlier on SDLC
• D. Increase the number of penetration tests before software release

Correct answer: C

Explanation

The correct answer, C, is effective because implementing a vulnerability scan early in the Software Development Life Cycle (SDLC) allows for the identification of security flaws in dependencies before deployment. Options A and D focus on validation and testing after the software is developed, which may not catch issues early enough, while B does not address the security of the libraries themselves.