ISC2 Certified Cloud Security Professional (CCSP) Practice Question
During a cloud migration project, a DevOps engineer stores the application's database username and password directly in a public Git repository so that automated build jobs can inject them into container images at build time. According to common application-security pitfalls that should be highlighted during developer training, which specific mistake is illustrated by this practice?
Neglecting to compress container images before pushing to the registry
Using weak cryptographic ciphers for data at rest
Failing to implement server-side input validation
Hard-coding credentials in source control, leading to secret exposure
Placing secrets such as database usernames and passwords directly in sourceācode repositories is a well-known application security pitfall. Hard-coded or publicly exposed credentials are easily harvested by attackers who gain access to the repository, enabling unauthorized access to cloud resources. Secure alternatives include using a secrets-management system or injecting credentials at runtime through environment variables managed by the platform. The other options describe security concerns, but none so directly result from committing sensitive values to code under version control.
Ask Bash
Bash is our AI bot, trained to help you pass your exam. AI Generated Content may display inaccurate information, always double-check anything important.
What are some secure alternatives to hard-coding credentials in source control?
Open an interactive chat with Bash
Why is hard-coding secrets in source control a security risk?
Open an interactive chat with Bash
How do secrets-management systems protect credentials?
Open an interactive chat with Bash
ISC2 Certified Cloud Security Professional (CCSP)
Cloud Application Security
Your Score:
Report Issue
Bash, the Crucial Exams Chat Bot
AI Bot
Loading...
Loading...
Loading...
Pass with Confidence.
IT & Cybersecurity Package
You have hit the limits of our free tier, become a Premium Member today for unlimited access.
Military, Healthcare worker, Gov. employee or Teacher? See if you qualify for a Community Discount.
Monthly
$19.99
$19.99/mo
Billed monthly, Cancel any time.
3 Month Pass
$44.99
$14.99/mo
One time purchase of $44.99, Does not auto-renew.
MOST POPULAR
Annual Pass
$119.99
$9.99/mo
One time purchase of $119.99, Does not auto-renew.
BEST DEAL
Lifetime Pass
$189.99
One time purchase, Good for life.
What You Get
All IT & Cybersecurity Package plans include the following perks and exams .