Cyber Monday 2024! Hurry Up, Grab the Special Discount - Save 25% - Ends In 00:00:00 Coupon code: SAVE25
Welcome to Pass4Success

- Free Preparation Discussions

Google Exam Professional Cloud DevOps Engineer Topic 5 Question 57 Discussion

Actual exam question for Google's Professional Cloud DevOps Engineer exam
Question #: 57
Topic #: 5
[All Professional Cloud DevOps Engineer Questions]

Your company is using HTTPS requests to trigger a public Cloud Run-hosted service accessible at the https://booking-engine-abcdef .a.run.app URL You need to give developers the ability to test the latest revisions of the service before the service is exposed to customers What should you do?

Show Suggested Answer Hide Answer
Suggested Answer: B

The best option for securing the CI/CD deployment pipeline is to configure vulnerability analysis with Artifact Registry and Binary Authorization. Vulnerability analysis is a feature that allows you to scan container images for known vulnerabilities and security issues. You can use vulnerability analysis with Artifact Registry, which is a service that allows you to store and manage container images and other artifacts. By using vulnerability analysis with Artifact Registry, you can ensure that your container images are scanned for vulnerabilities before they are deployed. Binary Authorization is a feature that allows you to enforce signature-based validation when deploying container images. You can use Binary Authorization with Cloud Build, which is a service that allows you to build and deploy container images. By using Binary Authorization with Cloud Build, you can ensure that only authorized and verified container images are deployed to your environment.


Contribute your Thoughts:

Annamae
8 months ago
Hmm, I'm not sure about option C. Passing an auth token to test the service privately feels a bit clunky. And option D, using a private URL, might be too restrictive for the developers.
upvoted 0 times
Kaitlyn
8 months ago
A) Run the cloud run deploy booking-engine ---no-traffic ----ag dev command. Use the https://dev----booking-engine-abcdef. a. run. app URL for testing
upvoted 0 times
...
Anisha
8 months ago
B) Run the cloud run services update-traffic booking-engine ---to-revisions LATEST*! command. Use the https://booking-engine-abcdef. a. run. app URL for testing
upvoted 0 times
...
Nakita
8 months ago
A) Run the cloud run deploy booking-engine ---no-traffic ----ag dev command. Use the https://dev----booking-engine-abcdef. a. run. app URL for testing
upvoted 0 times
...
Misty
8 months ago
B) Run the cloud run services update-traffic booking-engine ---to-revisions LATEST*! command. Use the https://booking-engine-abcdef. a. run. app URL for testing
upvoted 0 times
...
Carin
8 months ago
A) Run the cloud run deploy booking-engine ---no-traffic ----ag dev command. Use the https://dev----booking-engine-abcdef. a. run. app URL for testing
upvoted 0 times
...
...
Yun
8 months ago
Yeah, that's a good point. Option B looks more promising - updating the traffic to use the latest revision. That way, everyone can test the latest version without disrupting the main service.
upvoted 0 times
...
Dawne
8 months ago
Okay, let's start with option A. Deploying the service with no traffic seems like it could work, but I'm not sure if the dev URL would be accessible to everyone who needs to test it.
upvoted 0 times
...
Evette
8 months ago
This is a tricky question, I'm not sure which answer is the best. Let's go through each option and see if we can figure it out.
upvoted 0 times
...

Save Cancel