To ensure secure access to application secrets and facilitate their rotation in case of a security breach, leveraging a CI/CD pipeline for building and deploying application artifacts is recommended. What is the optimal method to achieve this?

Real Exam

Encrypt secrets and store them in the source code repository. Keep the decryption key in a separate repository and provide your pipeline access to it.

0.0%

Place secrets in a distinct configuration file in Git. Grant certain developers access to the configuration file.

0.0%

Request secrets from developers during the build process. Advise developers not to store secrets when idle.

0.0%

Store secrets in Cloud Storage encrypted with a key from Cloud KMS. Grant the CI/CD pipeline access to Cloud KMS through IAM.

100.0%

Google Professional Cloud DevOps Engineer

Get started today

Comments

To ensure secure access to application secrets and facilitate their rotation in case of a security breach, leveraging a CI/CD pipeline for building and deploying application artifacts is recommended. What is the optimal method to achieve this?