SAP-C02 · Question #782
SAP-C02 Question #782: Real Exam Question with Answer & Explanation
Sign in or unlock SAP-C02 to reveal the answer and full explanation for question #782. The question stem and answer options stay visible for context.
Question
A company has several AWS Lambda functions written in Python. The functions are deployed with the .zip package deployment type. The functions use a Lambda layer that contains common libraries and packages in a .zip file. The Lambda .zip packages and Lambda layer .zip file are stored in an Amazon S3 bucket. The company must implement automatic scanning of the Lambda functions and the Lambda layer to identify CVEs. A subset of the Lambda functions must receive automated code scans to detect potential data leaks and other vulnerabilities. The code scans must occur only for selected Lambda functions, not all the Lambda functions. Which combination of actions will meet these requirements? (Choose three.)
Options
- AActivate Amazon Inspector. Start automated CVE scans.
- BActivate Lambda standard scanning and Lambda code scanning in Amazon Inspector.
- CEnable Amazon GuardDuty. Enable the Lambda Protection feature in GuardDuty.
- DEnable scanning in the Monitor settings of the Lambda functions that need code scans.
- ETag Lambda functions that do not need code scans. In the tag, include a key of
- FUse Amazon Inspector to scan the 3 bucket that contains the Lambda .zip packages and the
Unlock SAP-C02 to see the answer
You've previewed enough free SAP-C02 questions. Unlock SAP-C02 for full answers, explanations, the timed quiz mode, progress tracking, and the master PDF. Question stem and options stay visible so you can still see what's on the exam.