DOP-C02 · Question #445
DOP-C02 Question #445: Real Exam Question with Answer & Explanation
The correct answer is B: Separate CodeArtifact repositories in dev and prod accounts. Dev repo has repository policy. Having separate CodeArtifact repositories in dev and prod accounts provides clear isolation and Repository policies can restrict dev repo access to developers. EventBridge triggers pipelines to test and promote packages only if tests pass, ensuring safe deployment to production.
Question
A company manages shared libraries across development and production accounts with IAM roles and CodePipeline/CDK. Developers must be the only ones to access latest versions. Shared packages must be independently tested before production. Which solution meets these requirements?
Options
- ASingle CodeArtifact repository in central account with IAM policies allowing only developers
- BSeparate CodeArtifact repositories in dev and prod accounts. Dev repo has repository policy
- CSingle S3 bucket with versioning in central account, IAM policies restricting developers. Use
- DSeparate S3 buckets with versioning in dev and prod accounts, dev bucket policy restricting
Explanation
Having separate CodeArtifact repositories in dev and prod accounts provides clear isolation and Repository policies can restrict dev repo access to developers. EventBridge triggers pipelines to test and promote packages only if tests pass, ensuring safe deployment to production. Using S3 (C and D) is not ideal for package management. A single repo (A) complicates access and version control across accounts.
Topics
Community Discussion
No community discussion yet for this question.