Questions
- Which of these is the recommended place for storing secrets?
a. Private Git repository
b. Public Git repository
c. Docker image
d. Secret management system
- Which one of the following is an open source secret management system?
a. Cloud KMS
b. HashiCorp Vault
c. Anchore Grype
- Is it a good practice to download a secret within your CD pipeline's filesystem?
- Which base image is generally considered more secure and consists of the fewest vulnerabilities?
a. Alpine
b. Slim
c. Buster
d. Default
- Which of the following answers are true about binary authorization? (Multiple answers are possible.)
a. It scans your images for vulnerabilities.
b. It allows only attested images to be deployed.
c. It prevents people from bypassing your CI/CD pipeline.