- Email support@dumps4free.com
Topic 4: Mix Questions Set
You have an Azure DevOps project that contains a build pipeline. The build pipeline uses approximately 50 open source libraries. You need to ensure that all the open source libraries comply with your company’s licensing standards. Which service should you use?
A. NuGet
B. Maven
C. Black Duck
D. Helm
Explanation: Secure and Manage Open Source Software Black Duck helps organizations identify and mitigate open source security, license compliance and code-quality risks across application and container portfolios. Black Duck Hub and its plugin for Team Foundation Server (TFS) allows you to automatically find and fix open source security vulnerabilities during the build process, so you can proactively manage risk. The integration allows you to receive alerts and fail builds when any Black Duck Hub policy violations are met.
Note: This question is part of a series of questions that present the same scenario. Each
question in the series contains a unique solution that might meet the stated goals. Some
question sets might have more than one correct solution, while others might not have a
correct solution.
After you answer a question in this section, you will NOT be able to return to it. As a result,
these questions will not appear in the review screen.
Your company uses Azure DevOps to manage the build and release processes for
applications.
You use a Git repository for applications source control.
You need to implement a pull request strategy that reduces the history volume in the
master branch.
Solution: You implement a pull request strategy that uses squash merges.
Does this meet the goal?
A. Yes
B. No
You use GitHub for source control. A file that contains sensitive data is committed accidentally to the Get repository of a project. You need to delete the file and its history form the repository. Which two tools can you use? Each correct answer presents a complete solution. NOTE: Each correct selection is worth one point.
A. the git filter-branch command
B. BFG Repo-Cleaner
C. the git rebase command
D. GitHub Desktop
Explanation: To entirely remove unwanted files from a repository's history you can use either the git filter-branch command or the BFG Repo-Cleaner open source tool.
You need to ensure that Microsoft Visual Studio 2017 can remotely attach to an Azure Function named fa-11566895. To complete this task, sign in to the Microsoft Azure portal.
Explanation:
Enable Remote Debugging
Before we start a debugging session to our Azure Function app we need to enable the
functionality.
Navigate in the Azure portal to your function app fa-11566895
Go to the “Application settings”
Under “Debugging” set Remote Debugging to On and set Remote Visual Studio
version to 2017.
You plan to use a NuGet package in a project in Azure DevOps. The NuGet package is in a feed that requires authentication. You need to ensure that the project can restore the NuGet package automatically. What should the project use to automate the authentication?
A. an Azure Automation account
B. an Azure Artifacts Credential Provider
C. an Azure Active Directory (Azure AD) account that has multi-factor authentication (MFA) enabled
D. an Azure Active Directory (Azure AD) service principal
D18912E1457D5D1DDCBD40AB3BF70D5D
Explanation: The Azure Artifacts Credential Provider automates the acquisition of credentials needed to restore NuGet packages as part of your .NET development workflow. It integrates with MSBuild, dotnet, and NuGet(.exe) and works on Windows, Mac, and Linux. Any time you want to use packages from an Azure Artifacts feed, the Credential Provider will automatically acquire and securely store a token on behalf of the NuGet client you're using.
| Page 35 out of 98 Pages |
| Previous |