- (Topic 4)
You use Azure Pipelines to build and release application code, The pipelines include validation tests that must be completed successfully before deployment proceeds from the test stage to production.
You discover inconsistent test outcomes for the same source code. You need to validate the test logic.
What should you do?
Correct Answer:
B
HOTSPOT - (Topic 1)
How should you confrere the release retention policy for the investment planning depletions suite? To answer, select the appropriate options in the answer area.
NOTE: Each correct selection is worth one point.
Solution:
Every request made against a storage service must be authorized, unless the request is for a blob or container resource that has been made available for public or signed access. One option for authorizing a request is by using Shared Key.
Scenario: The mobile applications must be able to call the share pricing service of the existing retirement fund management system. Until the system is upgraded, the service will only support basic authentication over HTTPS.
The investment planning applications suite will include one multi-tier web application and two iOS mobile application. One mobile application will be used by employees; the other will be used by customers.
References: https://docs.microsoft.com/en-us/rest/api/storageservices/authorize-with- shared-key
Does this meet the goal?
Correct Answer:
A
- (Topic 4)
Your company plans to use an agile approach to software development
You need to recommend an application to provide communication between members of the development team who work in locations around the world. The application must meet the following requirements:
• Provide the ability to isolate the members of efferent project teams into separate communication channels and to keep a history of the chats within those channels.
• Be available on Windows 10, Mac OS, iOS, and Android operating systems.
• Provide the ability to add external contractors and suppliers to projects.
• Integrate directly with Azure DevOps. What should you recommend?
Correct Answer:
D
Slack is a popular team collaboration service that helps teams be more productive by keeping all communications in one place and easily searchable from virtually anywhere. All your messages, your files, and everything from Twitter, Dropbox, Google Docs, Azure DevOps, and more all together. Slack also has fully native apps for iOS and Android to give you the full functionality of Slack wherever you go.
Integrated with Azure DevOps
This integration keeps your team informed of activity happening in its Azure DevOps projects. With this integration, code check-ins, pull requests, work item updates, and build events show up directly in your team's Slack channel.
Note: Microsoft Teams would also be a correct answer, but it is not an option here. References:
https://marketplace.visualstudio.com/items?itemName=ms-vsts.vss-services-slack
- (Topic 4)
You have 50 Node.js-based projects that you scan by using WhiteSource. Each project includes Package.json, Package-lock.json, and Npm-shrinkwrap.json files.
You need to minimize the number of libraries reports by WhiteSource to only the libraries that you explicitly reference.
What should you do?
Correct Answer:
D
Separate Your Dependencies
Within your package.json file be sure you split out your npm dependencies between devDependencies and (production) dependencies. The key part is that you must then make use of the --production flag when installing the npm packages. The --production flag will exclude all packages defined in the devDependencies section.
References: https://blogs.msdn.microsoft.com/visualstudioalmrangers/2017/06/08/manage- your-open-source-usage-and-security-as-reported-by-your-cicd-pipeline/
HOTSPOT - (Topic 4)
You use Azure Pipelines lo manage the build and deployment of apps.
You are planning the release strategies for a new app. You need to choose strategies for the following scenarios:
• Releases will be made available to users who are grouped by their tolerance for software faults.
• Code will be deployed to enable functionality that will be available in later releases of the app.
• When a new release occurs, the existing deployment will remain active to minimize recovery time if a return to the previous version is required.
Solution:
Box 1: Progressive exposure
Continuous Delivery may sequence multiple deployment “rings” for progressive exposure (also known as “controlling the blast radius”). Progressive exposure groups users who get to try new releases to monitor their experience in “rings.” The first deployment ring is often a “canary” used to test new versions in production before a broader rollout. CD automates deployment from one ring to the next and may optionally depend on an approval step, in which a decision maker signs off on the changes electronically. CD may create an auditable record of the approval in order to satisfy regulatory procedures or other control objectives.
Box 2: Feature flags
Feature flags support a customer-first DevOps mindset, to enable (expose) and disable (hide) features in a solution, even before they are complete and ready for release.
Box 3: Blue/green
Blue/green deployments which means that instead of replacing the previous version (here we refer to this version as blue), we bring up the new version (here referred to as the green version) next to the existing version, but not expose it to the actual users right away. On the condition of having successfully validated that the green version works correctly, we will promote this version to the public version by changing the routing configuration without downtime. If something is wrong with the green version we can revert back without users every noticing interruptions.
Does this meet the goal?
Correct Answer:
A
