Question 1
Which security practice involves reviewing code for vulnerabilities without executing it?
Question 2
What is the primary benefit of 'security gates' in a Secure SDLC?
Question 3
Which of the following best describes the 'build and configuration management' aspect of a Secure SDLC?
Question 4
What is the main purpose of 'security champions' within a development team in a Secure SDLC?
Question 5
During which phase of the Secure SDLC would 'vulnerability scanning' typically be performed?
