Q: 5
A DevOps engineer has automated a web service deployment by using AWS CodePipeline with the
following steps:
1) An AWS CodeBuild project compiles the deployment artifact and runs unit tests.
2) An AWS CodeDeploy deployment group deploys the web service to Amazon EC2 instances in the
staging environment.
3) A CodeDeploy deployment group deploys the web service to EC2 instances in the production
environment.
The quality assurance (QA) team requests permission to inspect the build artifact before the
deployment to the production environment occurs. The QA team wants to run an internal
penetration testing tool to conduct manual tests. The tool will be invoked by a REST API call.
Which combination of actions should the DevOps engineer take to fulfill this request? (Choose two.)
Options
Discussion
Labs on CodePipeline approvals and Lambda triggers helped with this one. A, E.
Its D and C. For D, the pipeline can hit the penetration testing tool REST API directly, doesn't seem like Lambda is needed here. C could fit since CodeDeploy groups allow hooks for manual steps. Not totally sure though if I missed something with CodePipeline stages.
A and E work best. Manual approval (A) gives QA a checkpoint, and E (Lambda) is needed to trigger the penetration test API since CodePipeline can't natively hit REST endpoints. Pretty sure that's correct but let me know if anyone thinks otherwise.
Ok, A and E for this. Manual approval gives QA a hold point, and using Lambda (E) is needed because CodePipeline can't hit REST APIs natively. Pretty sure that's the intended combo here, but correct me if I'm off!
B. not D. Official AWS study guide and lab practice questions cover manual approvals and Lambda integrations in CodePipeline, so I'm sticking with A and E.
A is wrong, D. Had something like this in a mock, the pipeline can just call the REST API directly so Lambda isn’t really needed. Pretty sure D covers the automation part, but not 100% on A.
A and E imo, saw a similar question in an exam report. Manual approval for QA and Lambda to trigger their tool fits.
B tbh, but only because I saw a similar question on a practice exam where B was correct. Not 100% sure here though.
A and E. Manual approval lets QA pause/review, Lambda for the API call since CodePipeline can't hit REST directly. Ran into this in some official practice sets, so pretty sure that's it. Open to other takes if I'm missing something.
Option D. saw something similar in a practice test and the official guide covers API triggers.
Be respectful. No spam.
