Free AZ-400 Exam Braindumps (page: 50)

Page 50 of 128

Your company is building a new solution in Java.

The company currently uses a SonarQube server to analyze the code of .NET solutions. You need to analyze and monitor the code quality of the Java solution.
Which task types should you add to the build pipeline?

  1. Grunt
  2. Octopus
  3. Maven
  4. Gulp

Answer(s): C

Explanation:

SonarQube is a set of static analyzers that can be used to identify areas of improvement in your code. It allows you to analyze the technical debt in your project and keep track of it in the future. With Maven and Gradle build tasks, you can run SonarQube analysis with minimal setup in a new or existing Azure DevOps Services build task.

Prepare Analysis Configuration task, to configure all the required settings before executing the build.
-This task is mandatory.
-In case of .NET solutions or Java projects, it helps to integrate seamlessly with MSBuild, Maven and Gradle tasks.

Note: There are several versions of this question in the exam. The question can have three correct answers:
-MSBuild
-Maven
-Gradle

The question can also have different incorrect options, including:
-Chef
-xCODE
-CocoaPods


Reference:

https://docs3.sonarqube.org/latest/analysis/scan/sonarscanner-for-azure-devops/ https://docs.microsoft.com/en-us/azure/devops/java/sonarqube?view=azure-devops



DRAG DROP (Drag and Drop is not supported)
You are developing a full Microsoft .NET Framework solution that includes unit tests.

You need to configure SonarQube to perform a code quality validation of the C# code as part of the build pipelines.

Which four tasks should you perform in sequence? To answer, move the appropriate tasks from the list of tasks to the answer area and arrange them in the correct order.

Select and Place:

  1. See Explanation section for answer.

Answer(s): A

Explanation:




Step 1: Prepare Analysis Configuration
Prepare Analysis Configuration task, to configure all the required settings before executing the build. This task is mandatory.
In case of .NET solutions or Java projects, it helps to integrate seamlessly with MSBuild, Maven and Gradle tasks.

Step 2: Visual Studio Build
Reorder the tasks to respect the following order:
Prepare Analysis Configuration task before any MSBuild or Visual Studio Build task.

Step 3: Visual Studio Test
Reorder the tasks to respect the following order:
Run Code Analysis task after the Visual Studio Test task.

Step 4: Run Code Analysis
Run Code Analysis task, to actually execute the analysis of the source code.
This task is not required for Maven or Gradle projects, because scanner will be run as part of the Maven/Gradle build. Note:


Reference:

https://docs.sonarqube.org/display/SCAN/Analyzing+with+SonarQube+Extension+for+VSTS-TFS



Your company uses Azure DevOps for the build pipelines and deployment pipelines of Java-based projects. You need to recommend a strategy for managing technical debt.
Which action should you include in the recommendation?

  1. Configure post-deployment approvals in the deployment pipeline.
  2. Integrate Azure DevOps and SonarQube.
  3. Integrate Azure DevOps and Azure DevTest Labs.

Answer(s): B

Explanation:

You can manage technical debt with SonarQube and Azure DevOps.

Note: Technical debt is the set of problems in a development effort that make forward progress on customer value inefficient. Technical debt saps productivity by making code hard to understand, fragile, time-consuming to change, difficult to validate, and creates unplanned work that blocks progress. Unless they are managed, technical debt can accumulate and hurt the overall quality of the software and the productivity of the development team in the long term

SonarQube an open source platform for continuous inspection of code quality to perform automatic reviews with static analysis of code to:
-Detect Bugs
-Code Smells
-Security Vulnerabilities
-Centralize Quality
-What’s covered in this lab


Reference:

https://azuredevopslabs.com/labs/vstsextend/sonarqube/



DRAG DROP (Drag and Drop is not supported)
You need to find and isolate shared code. The shared code will be maintained in a series of packages.

Which three actions should you perform in sequence? To answer, move the appropriate actions from the list of actions to the answer area and arrange them in the correct order.

Select and Place:

  1. See Explanation section for answer.

Answer(s): A

Explanation:



Step 1: Create a dependency graph for the application
By linking work items and other objects, you can track related work, dependencies, and changes made over time. All links are defined with a specific link type. For example, you can use Parent/Child links to link work items to support a hierarchical tree structure. Whereas, the Commit and Branch link types support links between work items and commits and branches, respectively.

Step 2: Group the related components.
Packages enable you to share code across your organization: you can compose a large product, develop multiple products based on a common shared framework, or create and share reusable components and libraries.
Step 3: Assign ownership to each component graph


Reference:

https://docs.microsoft.com/en-us/azure/devops/boards/queries/link-work-items-support-traceability?view=azure-devops&tabs=new-web-form
https://docs.microsoft.com/en-us/visualstudio/releasenotes/tfs2017-relnotes



Page 50 of 128



Post your Comments and Discuss Microsoft AZ-400 exam with other Community members:

yajnas commented on December 12, 2024
lot of the questions are from AZ-400 practice test
JAPAN
upvote

yajnas commented on December 12, 2024
very relevant information
JAPAN
upvote

yajnas commented on December 12, 2024
good material
JAPAN
upvote

Pandiyan Venkatraman commented on November 13, 2024
good question
Anonymous
upvote

jack commented on September 11, 2024
?? Just found this to be a great resource for AZ-400 prep! Perfect for gauging your readiness before the exam! ????
Anonymous
upvote

FezekaH commented on June 20, 2024
Very effective.
Anonymous
upvote

Marchelo commented on April 17, 2024
My honest opinion, it is good for passing the exam because all questions are same as the exam. But not so much for learning.
FRANCE
upvote

redy commented on February 09, 2024
nice questions
UNITED STATES
upvote

James commented on November 08, 2023
Thank you for providing these free exam questions. I used your questions for AZ-900 and managed to pass my exam. I am now preparing for my AZ-400. The content and questions looks very helpful.
UNITED STATES
upvote

Pieere commented on May 19, 2023
This exam dumps proved to be very same to the real exam. The questions are from real exam.
FRANCE
upvote

salpar commented on March 15, 2023
Good Questions
UNITED STATES
upvote

Papoo commented on October 19, 2022
There were questions on this breaindump that I had not studied for which helped me brush up on the exam. These dump is India.
INDIA
upvote

Jessica commented on July 22, 2022
I like this site because they promise a 100% money back if you fail. I passed my first exam. So I am going to set for my second exam. I feel confident.
UNITED STATES
upvote

Ron commented on June 24, 2022
I cannot thank you guys enough. I finally passed this exam with the help of your questions bank.
UNITED KINGDOM
upvote

Rakish commented on April 26, 2022
Managed to pass the exam after practicing these questions. The Xenigne App software in this package is very handy.
NEW ZEALAND
upvote

Heavy-Coder commented on November 23, 2021
The PDF questions is well formatted. The Test Engine is a very cool tool to practicy. it take the boring out of studying. Over all I am happy with my purchase.
UNITED STATES
upvote

Praveen commented on June 02, 2020
The content of the exam is pretty much same as the exam. Their Xengine App is very user-friendly and quite helpful to simulate the real exam. However, it still needs work which I have provided my feedback to their support email.
UNITED STATES
upvote