Lesson 2 Quiz

Questions

1) What are the features of cfn_nag?

A. Allows developers to find obvious security flaws in CloudFormation templates before doing a deployment.

B. Provides flexible controls for rule application including whitelists, blacklists, and fine-grained suppressions.

C. Supports custom rule development for enterprise-specific security violations.

D. All of the above

2) What are the benefits of preventing security vulnerabilities from entering your infrastructure?

A. You obtain quick feedback

B. You do not need to pay for AWS infrastructure that has security vulnerabilities identified by static analysis tools

C. Prevent customer applications/services from being deployed onto an insecure infrastructure

D. All of the above

3) Can cfn_nag be used to fail your deployment pipeline builds?

A. Yes

B. No

4) Which file does CodeBuild look for in your source code repository to run?

A. appspec.yml

B. buildspec.yml

C. Dockerfile

D. pom.xml