CCCS-203B · Question #136
CCCS-203B Question #136: Real Exam Question with Answer & Explanation
The correct answer is C. Update container images to address identified critical vulnerabilities.. Option A: Admission Controllers provide security and compliance enforcement, and disabling them would reduce security posture rather than align with image assessment results. Option B: Applying pod security policies is a general security best practice but is not directly derived
Question
Options
- ADisable unused Kubernetes Admission Controllers.
- BApply a pod security policy to restrict privileged containers.
- CUpdate container images to address identified critical vulnerabilities.
- DLimit the number of pods per node to prevent resource exhaustion.
Explanation
Option A: Admission Controllers provide security and compliance enforcement, and disabling them would reduce security posture rather than align with image assessment results. Option B: Applying pod security policies is a general security best practice but is not directly derived from an image assessment. Option C: Image assessments identify vulnerabilities and provide actionable recommendations, such as updating base images or dependencies to mitigate critical security risks. Option D: Limiting pods per node is a capacity management measure, not an outcome of image assessments focused on vulnerabilities.
Community Discussion
No community discussion yet for this question.