The development team wants to fail CI jobs where a specific CVE is contained within the image. How should the development team configure the pipeline or policy to produce this outcome?
A.
Set the specific CVE exception as an option in Jenkins or twistcli.
B.
Set the specific CVE exception as an option in Defender running the scan.
C.
Set the specific CVE exception as an option using the magic string in the Console.
D.
Set the specific CVE exception in Console's CI policy.
D.
By configuring the CI policy in Palo Alto Networks' Console, the development team can define rules and conditions for the CI (Continuous Integration) process.
Reference tech docs: https://docs.paloaltonetworks.com/prisma/prisma-cloud/prisma-cloud-admin-compute/continuous_integration/set_policy_ci_plugins.html
Vulnerability rules that target the build tool can allow specific vulnerabilities by creating an exception and setting the effect to 'ignore'. Block them by creating an exception and setting hte effect to 'fail'. For example, you could create a vulnerability rule that explicitly allows CVE-2018-1234 to suppress warnings in the scan results.
upvoted 1 times
...
Log in to ExamTopics
Sign in:
Community vote distribution
A (35%)
C (25%)
B (20%)
Other
Most Voted
A voting comment increases the vote count for the chosen answer by one.
Upvoting a comment with a selected answer will also increase the vote count towards that answer by one.
So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.
wandc
Highly Voted 2 years, 6 months agoJohnOrtiz
Most Recent 1 month, 4 weeks agoJohnFo17
4 months, 3 weeks agoassadhashmi
10 months, 3 weeks agoSpippolo
1 year, 1 month agokumar_57
1 year, 3 months agovimal1206
1 year, 8 months agodeeee
2 years, 10 months ago[Removed]
2 years, 10 months ago