PROFESSIONAL-CLOUD-SECURITY-ENGINEER · Question #370
PROFESSIONAL-CLOUD-SECURITY-ENGINEER Question #370: Real Exam Question with Answer & Explanation
Sign in or unlock PROFESSIONAL-CLOUD-SECURITY-ENGINEER to reveal the answer and full explanation for question #370. The question stem and answer options stay visible for context.
Question
Your company is deploying a large number of containerized applications to GKE. The existing CI/CD pipeline uses Cloud Build to construct container images, transfers the images to Artifact Registry, and then deploys the images to GKE. You need to ensure that only images that have passed vulnerability scanning and meet specific corporate policies are allowed to be deployed. The process needs to be automated and integrated into the existing CI/CD pipeline. What should you do?
Options
- AConfigure a policy in Binary Authorization to use Artifact Analysis vulnerability scanning to only
- BEnable Artifact Analysis vulnerability scanning and regularly scan images in Artifact Registry.
- CImplement a custom script in the Cloud Build pipeline that uses a third-party vulnerability scanning
- DConfigure GKE to use only images from a specific, trusted Artifact Registry repository. Manually
Unlock PROFESSIONAL-CLOUD-SECURITY-ENGINEER to see the answer
You've previewed enough free PROFESSIONAL-CLOUD-SECURITY-ENGINEER questions. Unlock PROFESSIONAL-CLOUD-SECURITY-ENGINEER for full answers, explanations, the timed quiz mode, progress tracking, and the master PDF. Question stem and options stay visible so you can still see what's on the exam.