🔥 3-day streak
CompTIA SecurityX (CAS-005)115 / 120
Question 115 of 120
A DevOps team runs CI/CD pipelines in a third-party SaaS build platform that must deploy resources into the company's cloud environment. Currently, a long-lived cloud access key is stored as a secret in the build platform. Security has flagged this as a high risk after discovering the key had not been rotated in 14 months and is shared across multiple pipelines. The architecture team must redesign how the pipeline authenticates to the cloud provider. Which approach BEST eliminates the standing credential while maintaining automated deployments?
Reviewed for accuracy · Report an issueNext question