Exam Professional Cloud Developer topic 1 question 323 discussion

Actual exam question from Google's Professional Cloud Developer

Question #: 323
Topic #: 1

[All Professional Cloud Developer Questions]

Your team is developing a new application that is packaged as a container and stored in Artifact Registry. You are responsible for configuring the CI/CD pipelines that use Cloud Build. Containers may be pushed manually as a local development effort or in an emergency. Every time a new container is pushed to Artifact Registry, you need to trigger another Cloud Build pipeline that executes a vulnerability scan. You want to implement this requirement using the least amount of effort. What should you do?

A. Configure Artifact Registry to publish a message to a Pub/Sub topic when a new image is pushed. Configure the vulnerability scan pipeline to be triggered by the Pub/Sub message.
B. Configure the Cloud Build Cl pipeline that publishes the new image to send a message to a Pub/Sub topic that triggers the vulnerability scan pipeline.
C. Configure Artifact Registry to publish a message to a Pub/Sub topic when a new image is pushed. Configure Pub/Sub to invoke a Cloud Function that triggers the vulnerability scan pipeline.
D. Use Cloud Scheduler to periodically check for new versions of the container in Artifact Registry and trigger the vulnerability scan pipeline.

Show Suggested Answer

Suggested Answer: A 🗳️

by Pime13 at July 15, 2025, 6:07 p.m.

Comments

Submit Cancel

Pime13

4 weeks ago

Selected Answer: A

https://cloud.google.com/artifact-registry/docs/analysis https://cloud.google.com/artifact-analysis/docs/scan-os-automatically https://cloud.google.com/artifact-analysis/docs/ods-cloudbuild https://cloud.google.com/build/docs/automate-builds-pubsub-events This page explains how you can create a Pub/Sub trigger to automate builds in response to events on Artifact Registry and Cloud Storage.

upvoted 1 times

...