Deal of The Day! Hurry Up, Grab the Special Discount - Save 25% - Ends In 00:00:00 Coupon code: SAVE25
Welcome to Pass4Success

- Free Preparation Discussions
Mail Us support@pass4success.com
Location US
Mob_nav_barsMENU

Microsoft AZ-400 Exam - Topic 4 Question 56 Discussion

Actual exam question for Microsoft's AZ-400 exam
Question #: 56
Topic #: 4
[All AZ-400 Questions]

You have an Azure DevOps project that contains a build pipeline. The build pipeline uses approximately 50 open source libraries.

You need to ensure that all the open source libraries comply with your company's licensing standards.

Which service should you use?

Show Suggested Answer Hide Answer
Suggested Answer: C

WhiteSource provides WhiteSource Bolt, a lightweight open source security and management solution developed specifically for integration with Azure DevOps and Azure DevOps Server.

Note: WhiteSource is the leader in continuous open source software security and compliance management. WhiteSource integrates into your build process, irrespective of your programming languages, build tools, or development environments. It works automatically, continuously, and silently in the background, checking the security, licensing, and quality of your open source components against WhiteSource constantly-updated denitive database of open source repositories.

Note: Blackduck would also be a good answer, but it is not an option here.


https://www.azuredevopslabs.com/labs/vstsextend/whitesource/

by Lashaunda at May 04, 2022, 12:24 AM

Limited Time Offer

25%

Off

Get Premium AZ-400 Questions as Interactive Web-Based Practice Test or PDF

Contribute your Thoughts:

0/2000 characters
Submit Cancel
Aimee
5 months ago
I’m surprised there’s no mention of other tools like Snyk or FOSSA!
upvoted 0 times
...
Cordelia
5 months ago
WhiteSource Bolt is specifically designed for this, so it makes sense.
upvoted 0 times
...
Asha
5 months ago
Wait, isn't Helm also used for managing dependencies?
upvoted 0 times
...
Dominga
5 months ago
Definitely agree, it integrates well with Azure DevOps!
upvoted 0 times
...
Shawna
5 months ago
I think WhiteSource Bolt is the right choice for license compliance.
upvoted 0 times
...
Norah
5 months ago
I practiced a similar question, and I think WhiteSource Bolt was mentioned as a good option for managing open source licenses.
upvoted 0 times
...
Junita
5 months ago
I'm not entirely sure, but I feel like Maven is more about building projects rather than checking licenses.
upvoted 0 times
...
Glenna
5 months ago
I remember studying about open source compliance tools, and I think WhiteSource Bolt might be the right choice for this scenario.
upvoted 0 times
...
Valentin
6 months ago
Helm seems like it’s more focused on Kubernetes package management, so I doubt it would help with licensing compliance.
upvoted 0 times
...
Teresita
6 months ago
Hmm, I'm a bit unsure about this one. I need to carefully read through the question and options to determine which component includes the HPE OneView license.
upvoted 0 times
...
Leanora
6 months ago
Hmm, this looks like a tricky one. I'll need to carefully read through the question and options to understand the requirements around duplicate node handling.
upvoted 0 times
...
Helaine
6 months ago
I feel like we had a similar practice question, but I can't recall if it was specifically about shipments. I think it's probably A or D.
upvoted 0 times
...

Save Cancel