An organization's DevOps team updates ephemeral services in a dynamic environment. They want to ensure these workloads remain safeguarded from new hazards discovered after rollout. Which measure addresses this requirement?
Run a single container inspection before the images go live
Patch container hosts any time a new version is deployed
Rely on the container orchestration software’s included configuration
Use a tool that assesses containers for undisclosed flaws beyond the initial release
Vulnerabilities can appear after initial deployment, so a tool that continually checks container images for undisclosed flaws provides an ongoing defense. A one-time inspection does not detect new issues. Updating only the container host leaves application layers unaddressed. Depending on included configuration alone offers limited coverage for fresh threats.
Ask Bash
Bash is our AI bot, trained to help you pass your exam. AI Generated Content may display inaccurate information, always double-check anything important.
What are ephemeral services in a dynamic environment?
Open an interactive chat with Bash
How do container assessment tools work to detect undisclosed flaws?
Open an interactive chat with Bash
Why is relying on container orchestration software's default configuration insufficient?