Topic 1 Question 264
2 つ選択A company has set up AWS CodeArtifact repositories with public upstream repositories. The company's development team consumes open source dependencies from the repositories in the company's internal network.
The company's security team recently discovered a critical vulnerability in the most recent version of a package that the development team consumes. The security team has produced a patched version to fix the vulnerability. The company needs to prevent the vulnerable version from being downloaded. The company also needs to allow the security team to publish the patched version.
Which combination of steps will meet these requirements?
Update the status of the affected CodeArtifact package version to unlisted.
Update the status of the affected CodeArtifact package version to deleted.
Update the status of the affected CodeArtifact package version to archived.
Update the CodeArtifact package origin control settings to allow direct publishing and to block upstream operations.
Update the CodeArtifact package origin control settings to block direct publishing and to allow upstream operations.
ユーザの投票
コメント(13)
- 正解だと思う選択肢: CD
I had this question in my exam and checking what was the correct option for the package version led me here. C - archived seems to be the right one. A - unlisted will only remove the package version from the list of versions returned to package managers, but it WILL NOT prevent the download. B - deleted - it's not a valid package version status (https://docs.aws.amazon.com/codeartifact/latest/ug/packages-overview.html#package-version-status) C - archived - will block the package version download. D - Allow direct publishing will give the internal team permissions to upload the new version of the package E - block direct publishing means the package version are updated from external (public) repos More on the packages origin control settings here: https://docs.aws.amazon.com/codeartifact/latest/ug/package-origin-controls.html
👍 5Weninka2024/07/19 - 正解だと思う選択肢: CD
A - unlisted does not prevent download B - deleted is not a valid code artifact package version status C- archived will prevent download
https://docs.aws.amazon.com/codeartifact/latest/ug/packages-overview.html#package-version-status
👍 5BvGVAXeAMP2024/07/29 - 正解だと思う選択肢: CD
C. Update the status of the affected CodeArtifact package version to archived.
- Reason: Setting the package version status to Archived will prevent it from being downloaded while still retaining its metadata. This ensures that the vulnerable version cannot be accessed or used but allows you to track or potentially restore it later if needed.
D. Update the CodeArtifact package origin control settings to allow direct publishing and to block upstream operations.
- Reason: Allowing direct publishing and blocking upstream operations will enable the security team to publish the patched version directly to your repository without being blocked by upstream restrictions. This ensures that the patched version can be made available while preventing any interference from upstream repositories.
👍 3jamesf2024/07/31
シャッフルモード