Microsoft Cybersecurity Architect — Question 54
You have an Azure subscription that contains 15 custom apps. The source files for the apps are stored in Git repositories. The apps are deployed by using Azure DevOps.
You need to recommend a DevSecOps solution to implement static application security testing (SAST) of the app code to identify hard-coded secrets.
What should you include in the recommendation?
Answer options
- A. GitHub Advanced Security
- B. Microsoft Defender for Key Vault
- C. Microsoft Dev Box
- D. Microsoft Defender for Cloud DevOps security
Correct answer: D
Explanation
The correct answer is D, as Microsoft Defender for Cloud DevOps security provides comprehensive security testing and monitoring capabilities, including SAST, to identify vulnerabilities like hard-coded secrets in application code. Options A and B, while related to security, do not specifically focus on SAST for application code, and C is not relevant to the context of DevSecOps and static code analysis.