Crucial Exams

CompTIA Linux+ XK0-006 (V8) Practice Question

During a security review, a Linux DevOps team discovers that a VS Code plug-in sends their Kubernetes manifests to a public large language model (LLM) for advice on hardening. Some of the manifests still contain base64-encoded Secrets that hold private container-registry credentials. The team wants to keep using the plug-in but must prevent accidental credential exposure. Which action best mitigates this specific risk?

  • Add an automated pre-submission filter that masks or removes any values matching credential or secret patterns before the manifest is sent to the LLM.

  • Insert a comment in each manifest instructing the LLM not to reveal or retain embedded secrets.

  • Require the plug-in to use TLS with certificate pinning when calling the LLM's API endpoint.

  • Allow the plug-in only on a non-production Git branch that mirrors the manifests.

CompTIA Linux+ XK0-006 (V8)
Automation, Orchestration, and Scripting
Your Score:
Settings & Objectives
Random Mixed
Questions are selected randomly from all chosen topics, with a preference for those you haven’t seen before. You may see several questions from the same objective or domain in a row.
Rotate by Objective
Questions cycle through each objective or domain in turn, helping you avoid long streaks of questions from the same area. You may see some repeat questions, but the distribution will be more balanced across topics.

Check or uncheck an objective to set which questions you will receive.

Wipe Score
Bash, the Crucial Exams Chat Bot
AI Bot