To ensure that only images from your centrally-managed Google Container Registry (GCR) in the `altostrat-images` project can be deployed to your Google Kubernetes Engine (GKE) cluster while minimizing development time, what should you do?

Exam-Like

Create a custom builder for Cloud Build that will only push images to gcr.io/altostrat-images.

0.0%

Use a Binary Authorization policy that includes the whitelist name pattern gcr.io/altostrat-images/.

50.0%

Add logic to the deployment pipeline to check that all manifests contain only images from gcr.io/altostrat-images.

25.0%

Add a tag to each image in gcr.io/altostrat-images and check that this tag is present when the image is deployed.

25.0%

Google Professional Cloud DevOps Engineer