Which TWO actions should you take to ensure that your Azure DevOps pipeline securely manages secrets?
Secrets are stored in Key Vault and referenced securely in pipelines.
Why this answer
Option A is correct because variable groups linked to Azure Key Vault allow secure storage. Option C is correct because secret variables should be set in the pipeline UI or variable groups, not YAML. Option B is wrong because checking secrets into the repository is insecure.
Option D is wrong because logging secrets is a security risk. Option E is wrong because storing secrets in the YAML file exposes them in the repository.