Deal of The Day! Hurry Up, Grab the Special Discount - Save 25% - Ends In 00:00:00 Coupon code: SAVE25
Welcome to Pass4Success

- Free Preparation Discussions
Mail Us support@pass4success.com
Location US
Mob_nav_barsMENU

CompTIA Exam CAS-004 Topic 1 Question 77 Discussion

Actual exam question for CompTIA's CAS-004 exam
Question #: 77
Topic #: 1
[All CAS-004 Questions]

An enterprise is undergoing an audit to review change management activities when promoting code to production. The audit reveals the following:

* Some developers can directly publish code to the production environment.

* Static code reviews are performed adequately.

* Vulnerability scanning occurs on a regularly scheduled basis per policy.

Which of the following should be noted as a recommendation within the audit report?

Show Suggested Answer Hide Answer
Suggested Answer: D

by Elden at Jul 12, 2025, 09:02 AM

Limited Time Offer

25%

Off

Get Premium CAS-004 Questions as Interactive Web-Based Practice Test or PDF

Contribute your Thoughts:

Submit Cancel
Azalee
3 days ago
Hmm, I'm torn between B and D. Both are valid options, but I think D is the more comprehensive solution. Can't have developers publishing code directly to production, that's just asking for trouble!
upvoted 0 times
...
Glenna
6 days ago
I'd go with B. Periodic account reviews can help identify any unauthorized access or escalated privileges, which seems to be the core problem here.
upvoted 0 times
...
Mauricio
7 days ago
Definitely D. Separation of duties is crucial to prevent abuse of access and ensure proper oversight. This is a glaring issue that needs to be addressed.
upvoted 0 times
...

Save Cancel