DevOps Cloud & DevOps Practices

Question 1

What does 'shift-left security' mean in a DevSecOps context?

Accepted Answer

Integrating security testing and reviews earlier in the development lifecycle

Answer

Shift-left security embeds security tools (SAST, dependency scanning, secret detection) into CI/CD pipelines so vulnerabilities are found at commit time, not after deployment.

Question 2

What is AWS CodePipeline?

Accepted Answer

A fully managed AWS CI/CD service that automates build, test, and deploy workflows

Answer

AWS CodePipeline is a managed continuous delivery service that automates release pipelines integrating with CodeBuild, CodeDeploy, and third-party tools.

Question 3

What is 'chaos engineering'?

Accepted Answer

Deliberately injecting failures into systems to test resilience and uncover weaknesses

Answer

Chaos engineering proactively injects failures (network latency, instance termination, CPU spikes) in controlled experiments to identify weaknesses before they cause real outages.

Question 4

What is the '12-Factor App' methodology?

Accepted Answer

A methodology for building scalable, maintainable cloud-native applications across 12 principles

Answer

The 12-Factor App methodology defines 12 principles for building SaaS applications that are scalable, portable, and maintainable, covering topics from codebase to logging.

Question 5

What is a 'feature flag' (feature toggle) in DevOps?

Accepted Answer

A configuration switch that enables or disables features at runtime without deploying new code

Answer

Feature flags decouple code deployment from feature release, allowing teams to merge code to main, deploy it, and control when users see new features via configuration.

DevOps Practice Test

DevOps Practice Test

DevOps Cloud & DevOps Practices