Examice

Exam PCCSE All QuestionsBrowse all questions from this exam

Go to Exam

Question 3

The development team wants to fail CI jobs where a specific CVE is contained within the image.

How should the development team configure the pipeline or policy to produce this outcome?

Set the specific CVE exception as an option in Jenkins or twistcli.

Set the specific CVE exception as an option in Defender running the scan.

Set the specific CVE exception as an option using the magic string in the Console.

Set the specific CVE exception in Console's CI policy.

Correct Answer: D

To fail CI jobs when a specific CVE is present within the image, the development team should configure the CI policy in the Console. This allows for the creation of rules and conditions that directly target the build process, ensuring that any image containing the specific CVE will fail the CI job.

Discussion

wandcOption: D

Answer is D

SpippoloOption: D

D. By configuring the CI policy in Palo Alto Networks' Console, the development team can define rules and conditions for the CI (Continuous Integration) process.

vimal1206Option: D

Answer is clearly D

JohnOrtizOption: D

The Correct Option is D

JohnFo17Option: D

https://knowledgebase.paloaltonetworks.com/KCSArticleDetail?id=kA14u000000oMkpCAE&lang=en_US%E2%80%A9&refURL=http%3A%2F%2Fknowledgebase.paloaltonetworks.com%2FKCSArticleDetail

assadhashmiOption: D

Answer is D

kumar_57Option: D

The correct option is D

deeee

which answer is correct?

[Removed]

Reference tech docs: https://docs.paloaltonetworks.com/prisma/prisma-cloud/prisma-cloud-admin-compute/continuous_integration/set_policy_ci_plugins.html Vulnerability rules that target the build tool can allow specific vulnerabilities by creating an exception and setting the effect to 'ignore'. Block them by creating an exception and setting hte effect to 'fail'. For example, you could create a vulnerability rule that explicitly allows CVE-2018-1234 to suppress warnings in the scan results.