Google Professional Cloud DevOps Engineer
Get started today
Ultimate access to all questions.
Ultimate access to all questions.
Your organization has recently transitioned to a container-based workflow for application development, with frequent releases to production via an automated pipeline. A security audit revealed potential vulnerabilities in the production code, noting that current VM vulnerability assessment tools are incompatible with the containerized environment. What step should you take to ensure the security and patch-level of all code deployed through the pipeline?
Explanation:
Container Analysis is the optimal solution as it specializes in scanning and reporting CVEs in production-deployed code. It offers insights into the security and patch status of the pipeline's code, enabling the early detection and remediation of vulnerabilities. Additionally, it features automated scanning and alerts for swift vulnerability management.