Exam Professional Cloud DevOps Engineer topic 1 question 183 discussion

Actual exam question from Google's Professional Cloud DevOps Engineer

Question #: 183
Topic #: 1

[All Professional Cloud DevOps Engineer Questions]

You use Artifact Registry to store container images built with Cloud Build. You need to ensure that all existing and new images are continuously scanned for vulnerabilities. You also want to track who pushed each image to the registry. What should you do?

A. Configure Artifact Registry to automatically scan new images and periodically re-scan all images. Use Cloud Audit Logs to track image uploads and identify the user who pushed each image.
B. Configure Artifact Registry to send vulnerability scan results to a Cloud Storage bucket. Use a separate script to parse results and notify a security team.
C. Configure Artifact Registry to automatically re-scan images daily. Enable Cloud Audit Logs to track these scans, and use Logs Explorer to identify vulnerabilities.
D. Configure Artifact Registry to automatically trigger vulnerability scans for new image tags, and view scan results. Use Cloud Audit Logs to track image tag creation events.

Show Suggested Answer

Suggested Answer: A 🗳️

by kitaharazyl at March 25, 2025, 2:30 a.m.

Comments

Submit Cancel

kitaharazyl

3 weeks, 4 days ago

Selected Answer: A

A. Configure Artifact Registry to automatically scan new images and periodically re-scan all images. Use Cloud Audit Logs to track image uploads and identify the user who pushed each image.

upvoted 1 times

...

Exam Professional Cloud DevOps Engineer All Questions

View all questions & answers for the Professional Cloud DevOps Engineer exam

Exam Professional Cloud DevOps Engineer topic 1 question 183 discussion

Comments

kitaharazyl

SY0-701