Designing and Implementing Microsoft DevOps Solutions — Question 75

You have a GitHub repository that uses GitHub Actions and stores access keys by using GitHub encrypted secrets.

You plan to update the secrets by using the GitHub REST API.

You need to wrap the secrets before adding them to a REST-based call.

Which encryption library should you use?

Answer options

• A. CryptoNet
• B. BouncyCastle
• C. libsodium
• D. hashlib

Correct answer: C

Explanation

The correct answer is C, libsodium, which is designed for secure encryption and is suitable for wrapping secrets. Options A (CryptoNet) and B (BouncyCastle) are less commonly used in this context, while D (hashlib) is primarily for hashing rather than encryption, making it inappropriate for this task.