🔥 3-day streak
Microsoft DevOps Engineer Expert32 / 138
Question 32 of 138
Your team's Azure DevOps pipeline signs a mobile app using a code-signing certificate (.p12) and an Apple provisioning profile. Currently a developer commits these binary files into the repository and the pipeline reads them directly. A security audit flagged this as a leakage risk. You must store the certificate and profile so that they are encrypted at rest, never checked into source control, and only usable by explicitly authorized pipelines. Which Azure DevOps feature should you use?
Reviewed for accuracy · Report an issueNext question