Practice Test 1 | Google Cloud Certified Associate Cloud Engineer | Dumps | Mock Test
One of your team members had accidentally included service account private JSON key while pushing code to GitHub. What steps should you immediately perform?
A. Delete the JSON file from GitHub.
B. Delete the project and all its resources.
C. Delete the JSON file from GitHub, remove the key from Google Cloud IAM and generate a new key for use.
D. None of the above
Explanation:
Correct Answer – C
Option C is correct: Private keys are meant to be kept safe and if they are uploaded to repositories, you must immediately delete them from the source and repository as well.
Option A is incorrect: Mere deleting it from GitHub does not ensure complete safety. You will have to delete it from GCP IAM as well.
Option B is incorrect: Deleting project and resources is not an ideal option. If you have 10s or 100s of resources running, deleting and recreating them is not feasible.
Option D is incorrect: The best practice for such a scenario is option C. Hence, this option is incorrect.
Reference:
Comments are closed, but trackbacks and pingbacks are open.