Boost your DevOps skills with the ITGSS Certified DevOps Engineer Test. Use flashcards and multiple choice questions with hints and explanations. Be exam-ready!

Each practice test/flash card set has 50 randomly selected questions from a bank of over 500. You'll get a new set of questions each time!

Practice this question and more.


When vulnerabilities are found in running containers, what should be updated and redeployed?

  1. Source image and containers

  2. Network policies and services

  3. Docker Compose files and pods

  4. Application code and databases

The correct answer is: Source image and containers

Updating and redeploying the source image and containers is essential when vulnerabilities are identified in running containers. This action ensures that the vulnerability is mitigated at the core level by altering the base image itself, which serves as the foundation for the containers. When a vulnerable image is detected, it is crucial to create a new, secure image that eliminates the threats found in the previous version. Redeploying the updated containers ensures that all instances of the service are running the secure version of the software, directly addressing the risk posed by the identified vulnerability. In a DevOps environment, maintaining the integrity and security of the containerized applications relies heavily on using trusted and patched images. While the other options involve important aspects of deployment and management, they do not directly respond to the need to secure the software running in containers by updating the image from which those containers are created. Adjusting network policies or modifying Docker Compose files does not resolve underlying issues within the container images themselves, nor does changing application code or databases address vulnerabilities at the container level. Focusing on updating the source image and the containers is the most effective response to vulnerabilities in containerized environments.