Answer-first summary for fast verification
Answer: Update the application code or apply a patch, build a new image, and redeploy it.
The correct answer is C because containers are immutable by design, meaning you cannot patch running containers directly. The proper approach is to update the application code or apply the patch, build a new container image, and redeploy it. This aligns with container best practices and the community consensus (83% support for C). Option B (auto upgrade) is incorrect as it refers to GKE node and control plane upgrades, not application container updates. Option A (Puppet/Chef) is unsuitable for container patching, and Option D (automatic container upgrades) is not a standard GKE feature and contradicts container immutability principles.
Author: LeetQuiz Editorial Team
Ultimate access to all questions.
A DevOps team needs to update their running Google Kubernetes Engine (GKE) containers to apply a newly released security patch. What is the correct method to perform this update?
A
Use Puppet or Chef to push out the patch to the running container.
B
Verify that auto upgrade is enabled; if so, Google will upgrade the nodes in a GKE cluster.
C
Update the application code or apply a patch, build a new image, and redeploy it.
D
Configure containers to automatically upgrade when the base image is available in Container Registry.
No comments yet.