🔥 3-day streak
ISC2 CISSP — Certified Information Systems Security Professional110 / 129
Question 110 of 129
A development team ships a web application that heavily relies on third-party open-source libraries pulled from public package repositories. During a post-incident review, security discovers the breach exploited a known critical vulnerability in a transitive dependency that no one on the team was aware they were using. Which practice, integrated into the build pipeline, would most directly prevent recurrence of this specific issue?
Reviewed for accuracy · Report an issueNext question