Deal of The Day! Hurry Up, Grab the Special Discount - Save 25% - Ends In 00:00:00 Coupon code: SAVE25
Welcome to Pass4Success

- Free Preparation Discussions
Mail Us support@pass4success.com
Location US
Mob_nav_barsMENU

Linux Foundation CGOA Exam - Topic 4 Question 4 Discussion

Actual exam question for Linux Foundation's CGOA exam
Question #: 4
Topic #: 4
[All CGOA Questions]

In the context of GitOps, what is one example of how DevSecOps principles manifested, enhancing the traditional DevOps lifecycle?

Show Suggested Answer Hide Answer
Suggested Answer: A

In GitOps, DevSecOps integrates security into the GitOps workflow by treating security policies as code and storing them in Git. This enables automatic detection of security policy drift and ensures that any misconfiguration or violation is reconciled, just like application and infrastructure code.

''GitOps applies DevSecOps by managing security policies as code. This enables detection of drift in security configurations, ensuring environments remain compliant and secure.''

Thus, the correct answer is A.


===========

by Sylvia at Oct 05, 2025, 12:16 PM

Limited Time Offer

25%

Off

Get Premium CGOA Questions as Interactive Web-Based Practice Test or PDF

Contribute your Thoughts:

0/2000 characters
Submit Cancel
Darnell
5 days ago
Right! A integrates security throughout the lifecycle, not just at the end.
upvoted 0 times
...
Julianna
29 days ago
D is a bad idea. Security should be everyone's responsibility, not just a team.
upvoted 0 times
...
Helga
1 month ago
I don’t like C. Manual checks slow down the process.
upvoted 0 times
...
Cristy
1 month ago
B seems relevant too, but it feels reactive, not proactive.
upvoted 0 times
...
Darnell
1 month ago
I think A is the best choice. Detecting security policy drift is crucial.
upvoted 0 times
...
Jesusa
2 months ago
Wait, are we really segregating security tasks? That’s surprising!
upvoted 0 times
...
Gayla
2 months ago
D sounds wrong; security should be everyone's job!
upvoted 0 times
...
Renea
2 months ago
C seems outdated, manual checks slow things down.
upvoted 0 times
...
Silva
2 months ago
I disagree with B; it’s more than just audits.
upvoted 0 times
...
Justa
2 months ago
I recall that option D doesn't align with the collaborative nature of DevSecOps, which emphasizes integrating security throughout the process, not just assigning it to a separate team.
upvoted 0 times
...
Gertude
3 months ago
Option C seems off to me; I thought GitOps was more about automation rather than manual checks at each stage.
upvoted 0 times
...
Chun
3 months ago
I'm not entirely sure, but I remember a practice question that mentioned post-deployment audits, which might relate to option B.
upvoted 0 times
...
Tommy
3 months ago
I think option A sounds familiar because we discussed how GitOps can automate security checks and monitor for policy drift.
upvoted 0 times
...
Sean
3 months ago
A) is spot on! Security drift detection is key.
upvoted 0 times
...
Becky
4 months ago
Exactly! Continuous monitoring is key in GitOps.
upvoted 0 times
...
Becky
4 months ago
Agreed! A really enhances security in GitOps.
upvoted 0 times
...
Robt
4 months ago
C) GitOps uses DevSecOps to enforce manual security checks at each deployment stage.
upvoted 0 times
...
Daron
4 months ago
Haha, "DevSecOps" sounds like a new superhero team. They'll save the day by writing secure code and merging it to the main branch!
upvoted 0 times
...
Junita
4 months ago
I'm not sure about that. Isn't DevSecOps more about integrating security throughout the entire lifecycle, not just at the end?
upvoted 0 times
...
Tijuana
5 months ago
That's a great answer! GitOps is all about keeping everything in code, so it makes sense that it would help with security policy management.
upvoted 0 times
...
Linsey
5 months ago
A) GitOps enhances the DevSecOps experience by detecting security policy drift.
upvoted 0 times
...
Starr
5 months ago
This is a tricky one. I think the key is to understand how GitOps and DevSecOps work together to improve the overall development and deployment lifecycle. Option A seems to capture that idea of using GitOps to detect security policy drift, which is a core DevSecOps principle.
upvoted 0 times
...
Karl
5 months ago
I'm a bit confused by the wording of the question. It's asking for an "example" of how DevSecOps principles are manifested in GitOps, but the answer choices seem to be more general statements. I'll need to carefully read through each option to see which one provides a specific example.
upvoted 0 times
...
Katie
5 months ago
Okay, let me think this through. I know GitOps is all about managing infrastructure as code, so I'm guessing the DevSecOps aspect has to do with automating security checks and enforcement as part of the deployment process. Option A sounds like the best fit for that.
upvoted 0 times
...
Yvonne
5 months ago
Hmm, this question seems to be testing our understanding of how DevSecOps principles are applied in the context of GitOps. I think the key is to focus on how GitOps enhances the traditional DevOps lifecycle by incorporating security practices.
upvoted 0 times
Janna
10 hours ago
I’m leaning towards B. Post-deployment audits are important too.
upvoted 0 times
...
Maybelle
3 months ago
I believe A is the right choice. Security policy drift is crucial.
upvoted 0 times
...
...

Save Cancel