nerdexam
ExamsPROFESSIONAL-CLOUD-DEVELOPERQuestions#156
GoogleGoogle

PROFESSIONAL-CLOUD-DEVELOPER · Question #156

PROFESSIONAL-CLOUD-DEVELOPER Question #156: Real Exam Question with Answer & Explanation

The correct answer is A: Enable the Vulnerability scanning setting in the Container Registry.. https://cloud.google.com/container-analysis/docs/os-overview

Implementing application security

Question

Your company's development teams want to use various open source operating systems in their Docker builds. When images are created in published containers in your company's environment, you need to scan them for Common Vulnerabilities and Exposures (CVEs). The scanning process must not impact software development agility. You want to use managed services where possible. What should you do?

Options

  • AEnable the Vulnerability scanning setting in the Container Registry.
  • BCreate a Cloud Function that is triggered on a code check-in and scan the code for CVEs.
  • CDisallow the use of non-commercially supported base images in your development environment.
  • DUse Cloud Monitoring to review the output of Cloud Build to determine whether a vulnerable

Explanation

https://cloud.google.com/container-analysis/docs/os-overview

Topics

#Container Security#Vulnerability Scanning#Google Cloud Artifact Registry#Managed Services

Community Discussion

No community discussion yet for this question.

Sign up to join the discussion
Full PROFESSIONAL-CLOUD-DEVELOPER PracticeBrowse All PROFESSIONAL-CLOUD-DEVELOPER Questions