Eccouncil braindumps ecde 312-97 Exam Dumps by Sidra q90 vce pdf

Page: 4 / 7

Exam Name:	EC-Council Certified DevSecOps Engineer (ECDE)
Exam Code:	312-97 Dumps
Vendor:	ECCouncil	Certification:	ECDE
Questions:	100 Q&A's	Shared By:	sidra

Question 16

(Amy Ryan is a DevSecOps engineer in an IT company that develops software products and web applications related to cyber security. She is using Anchore tool for container vulnerability scanning and Software Bill of Materials (SBOM) generation. It helped her to perform quick scanning and generating a list of known vulnerabilities from an SBOM, container image, or project directory. Which of the following commands should Amy run to include software from all the image layers in the SBOM?.)

Options:

syft packages < image > scope all_layers SBOM.

syft packages < image > --scope all-layers Anchore.

syft packages < image > scope all_layers.

syft packages < image > --scope all-layers.

Discussion

Question 17

(Rachel McAdams has been working as a senior DevSecOps engineer in an IT company for the past 5 years. Her organization embraced AWS cloud service due to robust security and cost-effective features offered by it. To take proactive decisions related to the security issues and to minimize the overall security risk, Rachel integrated ThreatModeler with AWS. ThreatModeler utilizes various services in AWS to produce a robust threat model. How can Rachel automatically generate the threat model of her organization’s current AWS environment in ThreatModeler?.)

Options:

By using YAML spec–based orchestration tools.

By using Architect.

By using STRIDE per Element.

By using Accelerator.

Discussion

Question 18

(Sofia Coppola has been working as a senior DevSecOps engineer in an MNC company located in Denver, Colorado. In January of 2020, her organization migrated all the workloads from on-prem to AWS cloud environment due to the robust security feature and cost-effective services offered by AWS. Which of the following is an Amazon Web Services-hosted version control tool that Sofia can use to manage and store assets in the AWS cloud?.)

Options:

AWS CodeCommit.

AWS CodePipeline.

AWS CodeBuilt.

AWS CodeDeploy.

Discussion

Anaya

I found so many of the same questions on the real exam that I had already seen in the Cramkey Dumps. Thank you so much for making exam so easy for me. I passed it successfully!!!

Nina May 22, 2026

It's true! I felt so much more confident going into the exam because I had already seen and understood the questions.

Nylah

I've been looking for good study material for my upcoming certification exam. Need help.

Dolly May 28, 2026

Then you should definitely give Cramkey Dumps a try. They have a huge database of questions and answers, making it easy to study and prepare for the exam. And the best part is, you can be sure the information is accurate and relevant.

Lennie

I passed my exam and achieved wonderful score, I highly recommend it.

Emelia May 13, 2026

I think I'll give Cramkey a try next time I take a certification exam. Thanks for the recommendation!

Faye

Yayyyy. I passed my exam. I think all students give these dumps a try.

Emmeline May 3, 2026

Definitely! I have no doubt new students will find them to be just as helpful as I did.

Question 19

(Scott Morrison is working as a senior DevSecOps engineer at SUTRE SOFT Pvt. Ltd. His organization develops software and applications for IoT devices. Scott created a user story; he then created abuser stories under the user story. After that, he created threat scenarios under the abuser story, and then he created test cases for the threat scenarios. After defining the YAML, Scott would like to push the user-story driven threat model to the ThreatPlaybook server. Which of the following command Scott should use?.)

Options:

playbook apply feature -f < path to the yaml file > -t test-project.

playbook apply feature -y < path to the yaml file > -p test-project.

playbook apply feature -f < path to the yaml file > -p test-project.

playbook apply feature -p < path to the yaml file > -t test-project.