exam questions

Exam CAS-004 All Questions

View all questions & answers for the CAS-004 exam

Exam CAS-004 topic 1 question 511 discussion

Actual exam question from CompTIA's CAS-004
Question #: 511
Topic #: 1
[All CAS-004 Questions]

A software development company needs to mitigate third-party risks to its software supply chain. Which of the following techniques should the company use in the development environment to best meet this objective?

  • A. Performing software composition analysis
  • B. Requiring multifactor authentication
  • C. Establishing coding standards and monitoring for compliance
  • D. Implementing a robust unit and regression-testing scheme
Show Suggested Answer Hide Answer
Suggested Answer: A 🗳️

Comments

Chosen Answer:
This is a voting comment (?). It is better to Upvote an existing comment if you don't have anything to add.
Switch to a voting comment New
Steel16
1 week, 2 days ago
Selected Answer: A
o SCA is a process that identifies and analyzes third-party components (like open-source libraries) used in an application. This allows developers to:  Identify vulnerabilities: SCA tools can scan these components against known vulnerability databases, highlighting potential security risks.  Check license compliance: It can also verify that the licenses used for third-party components are compatible with the project's requirements.  Manage dependencies: SCA provides visibility into all the dependencies within an application, helping teams understand the potential risks associated with each.
upvoted 1 times
...
ServerBrain
7 months, 2 weeks ago
Selected Answer: A
A. SCA
upvoted 2 times
...
Community vote distribution
A (35%)
C (25%)
B (20%)
Other
Most Voted
A voting comment increases the vote count for the chosen answer by one.

Upvoting a comment with a selected answer will also increase the vote count towards that answer by one. So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.

SaveCancel
Loading ...
exam
Someone Bought Contributor Access for:
SY0-701
London, 1 minute ago