Multiple Choice
Your application artifacts are being built and deployed via a CI/CD pipeline. You want the CI/CD pipeline to securely access application secrets. You also want to more easily rotate secrets in case of a security breach. What should you do?
A) Prompt developers for secrets at build time. Instruct developers to not store secrets at rest.
B) Store secrets in a separate configuration file on Git. Provide select developers with access to the configuration file.
C) Store secrets in Cloud Storage encrypted with a key from Cloud KMS. Provide the CI/CD pipeline with access to Cloud KMS via IAM.
D) Encrypt the secrets and store them in the source code repository. Store a decryption key in a separate repository and grant your pipeline access to it.
Correct Answer:
Verified
Correct Answer:
Verified
Q10: You are managing the production deployment to
Q11: Your company follows Site Reliability Engineering practices.
Q12: You are part of an organization that
Q13: Your application images are built and pushed
Q14: Your team uses Cloud Build for all
Q16: You need to run a business-critical workload
Q17: You are running an experiment to see
Q18: Your application services run in Google Kubernetes
Q19: You are running an application in a
Q20: Your team has recently deployed an NGINX-based