PROFESSIONAL-CLOUD-DEVOPS-ENGINEER · Question #17
PROFESSIONAL-CLOUD-DEVOPS-ENGINEER Question #17: Real Exam Question with Answer & Explanation
Sign in or unlock PROFESSIONAL-CLOUD-DEVOPS-ENGINEER to reveal the answer and full explanation for question #17. The question stem and answer options stay visible for context.
Question
Your organization recently adopted a container-based workflow for application development. Your team develops numerous applications that are deployed continuously through an automated build pipeline to the production environment. A recent security audit alerted your team that the code pushed to production could contain vulnerabilities and that the existing tooling around virtual machine (VM) vulnerabilities no longer applies to the containerized environment. You need to ensure the security and patch level of all code running through the pipeline. What should you do?
Options
- ASet up Container Analysis to scan and report Common Vulnerabilities and Exposures.
- BConfigure the containers in the build pipeline to always update themselves before release.
- CReconfigure the existing operating system vulnerability software to exist inside the container.
- DImplement static code analysis tooling against the Docker files used to create the containers.
Unlock PROFESSIONAL-CLOUD-DEVOPS-ENGINEER to see the answer
You've previewed enough free PROFESSIONAL-CLOUD-DEVOPS-ENGINEER questions. Unlock PROFESSIONAL-CLOUD-DEVOPS-ENGINEER for full answers, explanations, the timed quiz mode, progress tracking, and the master PDF. Question stem and options stay visible so you can still see what's on the exam.