PCDO Bootstrapping a Google Cloud organization for DevOps

Two designs were proposed. Design A would scan artifacts in Cloud Build. Design B would build containers in CI. The team must pick the approach aligned with vendor best practices. Which choice is correct?

Multiple choice — select one answer

Answer choices

  1. a. Ignore CVEs (not recommended for production workloads)
  2. b. Deploy any image (not recommended for production workloads)
  3. c. Binary Authorization or vulnerability scanning
  4. d. Cloud Build

Architectural breakdown & explanation

Scanning gates risky deployments. Compare with Cloud Build: Cloud Build executes build steps.

Correct answer(s): c. Binary Authorization or vulnerability scanning

Exam domain: Bootstrapping a Google Cloud organization for DevOps (20% weight on the official guide).

Official documentation & study links

Practice this certification

This page is one question from the Google Professional Cloud DevOps Engineer bank. Run a full timed practice exam with domain-weighted random questions in your browser.