Question 15:
A security engineer thinks the development team has been hard-coding sensitive environment variables in its code. Which of the following would BEST secure the company`s CI/CD pipeline?
Answer options:
A. Utilizing a trusted secrets manager B. Performing DAST on a weekly basis C. Introducing the use of container orchestration D. Deploying instance tagging
