DVA-C02 · Question #33
DVA-C02 Question #33: Real Exam Question with Answer & Explanation
Sign in or unlock DVA-C02 to reveal the answer and full explanation for question #33. The question stem and answer options stay visible for context.
Question
A company needs to harden its container images before the images are in a running state. The company's application uses Amazon Elastic Container Registry (Amazon ECR) as an image registry. Amazon Elastic Kubernetes Service (Amazon EKS) for compute, and an AWS CodePipeline pipeline that orchestrates a continuous integration and continuous delivery (CI/CD) workflow. Dynamic application security testing occurs in the final stage of the pipeline after a new image is deployed to a development namespace in the EKS cluster. A developer needs to place an analysis stage before this deployment to analyze the container image earlier in the CI/CD pipeline. Which solution will meet these requirements with the MOST operational efficiency?
Options
- ABuild the container image and run the docker scan command locally. Mitigate any findings before
- BCreate a new CodePipeline stage that occurs after the container image is built. Configure ECR
- CCreate a new CodePipeline stage that occurs after source code has been retrieved from its
- DAdd an action to the deployment stage of the pipeline so that the action occurs before the
Unlock DVA-C02 to see the answer
You've previewed enough free DVA-C02 questions. Unlock DVA-C02 for full answers, explanations, the timed quiz mode, progress tracking, and the master PDF. Question stem and options stay visible so you can still see what's on the exam.