ExamTopics Logo
Mail Us[email protected]
Menu
Google Discussions
exam questions

Exam Professional Cloud DevOps Engineer All Questions

View all questions & answers for the Professional Cloud DevOps Engineer exam
Go to Exam

Exam Professional Cloud DevOps Engineer topic 1 question 114 discussion

Actual exam question from Google's Professional Cloud DevOps Engineer
Question #: 114
Topic #: 1
[All Professional Cloud DevOps Engineer Questions]

Your organization is using Helm to package containerized applications. Your applications reference both public and private charts. Your security team flagged that using a public Helm repository as a dependency is a risk. You want to manage all charts uniformly, with native access control and VPC Service Controls. What should you do?

  • A. Store public and private charts in OCI format by using Artifact Registry.
  • B. Store public and private charts by using GitHub Enterprise with Google Workspace as the identity provider.
  • C. Store public and private charts by using Git repository. Configure Cloud Build to synchronize contents of the repository into a Cloud Storage bucket. Connect Helm to the bucket by using https://[bucket].storage-googleapis.com/[helmchart] as the Helm repository.
  • D. Configure a Helm chart repository server to run in Google Kubernetes Engine (GKE) with Cloud Storage bucket as the storage backend.
Show Suggested Answer Hide Answer
Suggested Answer: A 🗳️
by nhiguchi at Oct. 22, 2023, 7:53 a.m.

Comments

Chosen Answer:
This is a voting comment (?). It is better to Upvote an existing comment if you don't have anything to add.
Switch to a voting comment New
Submit Cancel
nhiguchi
Highly Voted 7 months, 4 weeks ago
Selected Answer: A
Answer should be A https://cloud.google.com/artifact-registry/docs/helm
upvoted 6 times
...
xhilmi
Most Recent 6 months, 2 weeks ago
Selected Answer: A
To address security concerns and maintain consistent access controls for Helm charts, it's recommended to store both public and private charts in the Open Container Initiative (OCI) format using Google Cloud's Artifact Registry, as suggested in (Option A). Artifact Registry provides a centralized, secure repository for Helm charts with native access control features and integration capabilities with VPC Service Controls. Storing charts in OCI format ensures a standardized approach to packaging, and Artifact Registry offers a robust solution for organizing and securing container artifacts. This approach improves security by centralizing both public and private charts, aligning with best practices for Helm chart management in containerized applications.
upvoted 3 times
...
mshafa
7 months, 2 weeks ago
A is answer.
upvoted 1 times
...
Community vote distribution
A (35%)
C (25%)
B (20%)
Other
Most Voted
A voting comment increases the vote count for the chosen answer by one.

Upvoting a comment with a selected answer will also increase the vote count towards that answer by one. So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.

SaveCancel