Exam4Training

What should you do?

You have 50 Node.js-based projects that you scan by using WhiteSource. Each project includes Package.json, Package-lock.json, and Npm-shrinkwrap.json files.

You need to minimize the number of libraries reports by WhiteSource to only the libraries that you explicitly reference.

What should you do?
A . Configure the File System Agent plug in.
B . Delete Package lock.json.
C . Configure the Artifactory plug-in.
D . Add a devDependencies section to Package-lock.json.

Answer: D

Explanation:

Separate Your Dependencies

Within your package.json file be sure you split out your npm dependencies between devDependencies and (production) dependencies. The key part is that you must then make use of the –production flag when installing the npm packages. The –production flag will exclude all packages defined in the devDependencies section.

Reference: https://blogs.msdn.microsoft.com/visualstudioalmrangers/2017/06/08/manage-your-open-source-usage-and-security-as-reported-by-your-cicd-pipeline/

Latest AZ-400 Dumps Valid Version with 289 Q&As

Latest And Valid Q&A | Instant Download | Once Fail, Full Refund

Exit mobile version