7d • 🙋♂️ CISSP
CISSP Practice Question (Domain 8: Software Development Security)
A developer commits API credentials into a public repository and immediately deletes the commit. The security team discovers the credentials are still visible in the repository's commit history. The API provides read access to customer records. What should you do FIRST?
A. Purge the commit history to remove the exposed credentials from the repository
B. Revoke and rotate the compromised API credentials immediately
C. Scan customer records for evidence of unauthorized access using the exposed keys
D. Implement pre-commit hooks to prevent future credential exposure in repositories
Come back for the answer tomorrow, or study more now!
3
20 comments
CISSP Practice Question (Domain 8: Software Development Security)
skool.com/cybersecurity-study-group
Share resources, get advice, and connect with peers studying cybersecurity. Join our CISSP study group and connect with fellow professionals today!
Leaderboard (30-day)
1
+41
2
+32
3
+29
4
+29
5
+27
Powered by