During the security review portion of the development cycle, which of the following should be done to minimize possible application vulnerabilities?

A development team releases updates to an application regularly. The application is compiled with several standard open-source security products that require a minimum version for compatibility.

During the security review portion of the development cycle, which of the following should be done to minimize possible application vulnerabilities?
A . The developers should require an exact version of the open-source security products, preventing the introduction of new vulnerabilities.
B . The application development team should move to an Agile development approach to identify security concerns faster
C . The change logs for the third-party libraries should be reviewed for security patches, which may need to be included in the release.
D . The application should eliminate the use of open-source libraries and products to prevent known vulnerabilities from being included.

Answer: C

Latest CAS-003 Dumps Valid Version with 509 Q&As

Latest And Valid Q&A | Instant Download | Once Fail, Full Refund

Subscribe
Notify of
guest
0 Comments
Inline Feedbacks
View all comments