AWS Certified DevOps Engineer – Professional — Question 85

A DevOps engineer is deploying an AWS Service Catalog portfolio using AWS CodePipeline. The pipeline should create products and templates based on a manifest file in either JSON or YAML, and should enforce security requirements on all AWS Service Catalog products managed through the pipeline.

Which solution will meet the requirements in an automated fashion?

Answer options

• A. Use the AWS Service Catalog deploy action in AWS CodeDeploy to push new versions of products into the AWS Service Catalog with verification steps in the CodeDeploy AppSpec.
• B. Use the AWS Service Catalog deploy action in AWS CodeBuild to verify and push new versions of products into the AWService Catalog.
• C. Use an AWS Lambda action in CodePipeline to run a Lambda function to verify and push new versions of products into the AWS Service Catalog.
• D. Use an AWS Lambda action in AWS CodeBuild to run a Lambda function to verify and push new versions of products into the AWS Service Catalog.

Correct answer: C

Explanation

The correct answer is C because using an AWS Lambda action in CodePipeline allows for the execution of a Lambda function that can automate both the verification and the deployment of new product versions to the AWS Service Catalog. Options A and B incorrectly use AWS CodeDeploy and CodeBuild for deployment, which do not directly support the required automated workflow. Option D misuses CodeBuild instead of CodePipeline, making it less suitable for this specific requirement.