🔥 3-day streak
Microsoft Cybersecurity Architect Expert84 / 158
Question 84 of 158

A financial services company is standardizing its Azure DevOps CI/CD pipelines across multiple product teams. Security reviews revealed that developers occasionally commit hardcoded credentials and connection strings into source repositories, and that vulnerable open-source dependencies reach production. The chief security architect wants to design a DevSecOps solution aligned with the Microsoft Cloud Security Benchmark (MCSB) DevOps Security control domain that shifts detection as early as possible in the development lifecycle. Which approach best satisfies this requirement?

Reviewed for accuracy · Report an issueNext question