GoogleGoogle
PROFESSIONAL-CLOUD-DEVELOPER · Question #309
PROFESSIONAL-CLOUD-DEVELOPER Question #309: Real Exam Question with Answer & Explanation
The correct answer is B: Enable Binary Authorization on your Cloud Run service. Create an attestation if the container. https://cloud.google.com/run/docs/securing/binary-authorization
Implement secure application deployment practices
Question
You use Cloud Build to build and test container images prior to deploying them to Cloud Run. Your images are stored in Artifact Registry. You need to ensure that only container images that have passed testing are deployed. You want to minimize operational overhead. What should you do?
Options
- ADeploy a new revision to a Cloud Run service. Assign a tag that allows access to the revision at a
- BEnable Binary Authorization on your Cloud Run service. Create an attestation if the container
- CCreate a GKE cluster. Verify that all tests have passed, and then deploy the image to the GKE
- DConfigure build provenance on your Cloud Build pipeline. Verify that all the tests have passed,
Explanation
https://cloud.google.com/run/docs/securing/binary-authorization
Topics
#Binary Authorization#Container Security#Cloud Run#Deployment Policy
Community Discussion
No community discussion yet for this question.