Question 4
Domain 5: Supply Chain SecurityA security team wants to use a commercial product to scan container images for known vulnerabilities. Which tool from the listed options is identified in the source material for this purpose?
Correct answer: A
Explanation
For commercial container image vulnerability scanning, recognize the named products associated with that function and distinguish them from unrelated security tooling. — cks_syllabus.txt
Why each option is right or wrong
A. Snyk
The source material for Task Statement 5.4 explicitly lists Snyk as a commercial scanning tool used to scan images for known vulnerabilities.
B. Prometheus
Prometheus is not listed here as a commercial image vulnerability scanner.
C. Fluentd
Fluentd is not identified here as a tool for scanning images for known vulnerabilities.
D. Helm
Helm is not named here as a commercial vulnerability scanning product.