A team currently makes use of Docker containers for building their application. The application lifecycle also makes use of Azure Devops. Exploits need to be detected in the Docker images before the container can be used. These exploits must be detected as early on in the lifecycle as possible. 
Which of the following would you configure as part of the lifecycle?

Answer options:

A.Ensure a scheduled task runs against the production container in the continuous deployment pipeline
B.Ensure a scheduled task runs against the staging container in the continuous deployment pipeline
C.Ensure a scheduled task runs against the image registry to analyse the images
D.Run manual tasks to analyse the docker containers in the planning phase

Answer – C 
It’s always good to have an on-going process to analyse the images in the image registry itself. There are some points also given in a whitepaper which relates to security for containers 

Options A and B are incorrect since this would be too late to detect issues in the application lifecycle 
Option D is incorrect because it is inefficient to use manual processes 
For more information on container security, please visit the below URL 

https://azure.microsoft.com/en-us/resources/container-security-in-microsoft-azure/en-us/