Palo Alto Networks Exam PSE-StrataDC Topic 3 Question 86 Discussion

Actual exam question for Palo Alto Networks's PSE-StrataDC exam

Question #: 86
Topic #: 3

[All PSE-StrataDC Questions]

Is vulnerability analysis against images in the registry sufficient for security?

AYes, containers do not have unique vulnerabilities.

BNo, you should do vulnerability analysis only against the running containers, which are vulnerable.

CYes, you are ensuring that the images the containers are based on are secure.

DNo, you need to do analysis in the CI system, in the registry, and against instantiated containers

Show Suggested Answer

Suggested Answer: C

by Levi at Jul 13, 2025, 05:10 PM

Limited Time Offer

25%

Off

Contribute your Thoughts:

Submit Cancel

15 hours ago

C seems reasonable, but D is more comprehensive. You can't just rely on the registry, you need to check the running containers too.

upvoted 0 times

...

2 days ago

I disagree, we should do analysis against running containers too.

upvoted 0 times

...

5 days ago

D is the correct answer. You need to analyze vulnerabilities at every stage - in the CI system, in the registry, and in the running containers.

upvoted 0 times

...

7 days ago

I think vulnerability analysis against images in the registry is sufficient.

upvoted 0 times

...