Valid AZ-400 Dumps shared by ExamDiscuss.com for Helping Passing AZ-400 Exam! ExamDiscuss.com now offer the newest AZ-400 exam dumps, the ExamDiscuss.com AZ-400 exam questions have been updated and answers have been corrected get the newest ExamDiscuss.com AZ-400 dumps with Test Engine here:
Your company deploys applications in Docker containers. You want to detect known exploits in the Docker images used to provision the Docker containers. You need to integrate image scanning into the application lifecycle. The solution must expose the exploits as early as possible during the application lifecycle. What should you configure?
Correct Answer: A
Explanation/Reference: Explanation: You can use the Docker task to sign into ACR and then use a subsequent script to pull an image and scan the container image for vulnerabilities. Use the docker task in a build or release pipeline. This task can be used with Docker or Azure Container registry. Incorrect Answers: C: We should not wait until deployment. We want to detect the exploits as early as possible. D: We should wait until the image is in the product container. We want to detect the exploits as early as possible. References: https://docs.microsoft.com/en-us/azure/devops/articles/security-validation-cicd-pipeline? view=vsts
