Google Professional-Cloud-Developer Exam Practice Test Instant Access

Question 1

You are a lead developer working on a new retail system that runs on Cloud Run and Firestore. A web UI requirement is for the user to be able to browse through alt products. A few months after go-live, you notice that Cloud Run instances are terminated with HTTP 500: Container instances are exceeding memory limits errors during busy times

This error coincides with spikes in the number of Firestore queries

You need to prevent Cloud Run from crashing and decrease the number of Firestore queries. You want to use a solution that optimizes system performance What should you do?

ACreate a custom jndex over the products

BModify the query that returns the product list using cursors with limits

CModify the Cloud Run configuration to increase the memory limits

DModify the query that returns the product list using integer offsets

Answer : B

Question 2

You are developing an event-driven application. You have created a topic to receive messages sent to Pub/Sub. You want those messages to be processed in real time. You need the application to be independent from any other system and only incur compute costs when new messages arrive. You want to configure the simplest and most efficient architecture What should you do?

ADeploy your code on Cloud Functions. Use a Pub/Sub trigger to invoke the Cloud Function. Use the Pub/Sub API to create a pull subscription to the Pub/Sub topic and read messages from it.

BDeploy your code on Cloud Functions. Use a Pub/Sub trigger to handle new messages in the topic.

CDeploy the application on Google Kubernetes Engine. Use the Pub/Sub API to create a pull subscription to the Pub/Sub topic and read messages from it

DDeploy the application on Compute Engine. Use a Pub/Sub push subscription to process new messages in the topic.

Answer : B

https://cloud.google.com/functions/docs/calling/pubsub

Question 3

You are deploying a Python application to Cloud Run using Cloud Build. The Cloud Build pipeline is shown below:

You want to optimize deployment times and avoid unnecessary steps What should you do?

ARemove the step that pushes the container to Artifact Registry.

BAdd the ---cache-from argument to the Docker build step in your build config file.

CStore image artifacts in a Cloud Storage bucket in the same region as the Cloud Run instance.

DDeploy a new Docker registry in a VPC and use Cloud Build worker pools inside the VPC to run the build pipeline.

Answer : B

https://cloud.google.com/build/docs/optimize-builds/speeding-up-builds#using_a_cached_docker_image

Question 4

You have an ecommerce application hosted in Google Kubernetes Engine (GKE) that receives external requests and forwards them to third-party APIs external to Google Cloud. The third-party APIs are responsible for credit card processing, shipping, and inventory management using the process shown in the diagram.

Your customers are reporting that the ecommerce application is running slowly at unpredictable times. The application doesn't report any metrics You need to determine the cause of the inconsistent performance What should you do?

AInstall the Ops Agent inside your container and configure it to gather application metrics.

BInstall the OpenTelemetry library for your respective language, and instrument your application.

CModify your application to read and forward the x-Cloud-Trace-context header when it calls the
downstream services
D Enable Managed Service for Prometheus on the GKE cluster to gather application metrics.

Answer : B

Question 5

You work for a financial services company that has a container-first approach. Your team develops microservices applications You have a Cloud Build pipeline that creates a container image, runs regression tests, and publishes the image to Artifact Registry You need to ensure that only containers that have passed the regression tests are deployed to Google Kubernetes Engine (GKE) clusters You have already enabled Binary Authorization on the GKE clusters What should you do next?

ADeploy Voucher Server and Voucher Client Components. After a container image has passed the regression tests, run Voucher Client as a step in the Cloud Build pipeline.

BSet the Pod Security Standard level to Restricted for the relevant namespaces Digitally sign the container
images that have passed the regression tests as a step in the Cloud Build pipeline.

CCreate an attestor and a policy. Create an attestation for the container images that have passed the regression tests as a step in the Cloud Build pipeline.

DCreate an attestor and a policy Run a vulnerability scan to create an attestation for the container image as a step in the Cloud Build pipeline.

Answer : C

Question 6

Your team has created an application that is hosted on a Google Kubernetes Engine (GKE) cluster You need to connect the application to a legacy REST service that is deployed in two GKE clusters in two different regions. You want to connect your application to the legacy service in a way that is resilient and requires the fewest number of steps You also want to be able to run probe-based health checks on the legacy service on a separate port How should you set up the connection?

AUse Traffic Director with a sidecar proxy to connect the application to the service.

BUse a proxyless Traffic Director configuration to connect the application to the service.

CConfigure the legacy service's firewall to allow health checks originating from the proxy.

DConfigure the legacy service's firewall to allow health checks originating from the application.

EConfigure the legacy service's firewall to allow health checks originating from the Traffic Director control plane.

Answer : A, C

https://cloud.google.com/traffic-director/docs/advanced-setup#routing-rule-maps https://cloud.google.com/traffic-director/docs/advanced-setup

A) Using Traffic Director with a sidecar proxy can provide resilience for your application by allowing for failover to the secondary region in the event of an outage. The sidecar proxy can route traffic to the legacy service in either of the two GKE clusters, ensuring high availability. C. Configuring the legacy service's firewall to allow health checks originating from the proxy allows the proxy to periodically check the health of the legacy service and ensure that it is functioning properly. This helps to ensure that traffic is only routed to healthy instances of the legacy service, further improving the resilience of the setup.

Question 7

You are developing a new web application using Cloud Run and committing code to Cloud Source Repositories. You want to deploy new code in the most efficient way possible. You have already created a Cloud Build YAML file that builds a container and runs the following command: gcloud run deploy. What should you do next?

ACreate a Pub/Sub topic to be notified when code is pushed to the repository. Create a Pub/Sub trigger that runs the build file when an event is published to the topic.

BCreate a build trigger that runs the build file in response to a repository code being pushed to the development branch.

CCreate a webhook build trigger that runs the build file in response to HTTP POST calls to the webhook URL.

DCreate a Cron job that runs the following command every 24 hours: gcloud builds submit.

Answer : B

https://cloud.google.com/build/docs/triggers

Cloud Build uses build triggers to enable CI/CD automation. You can configure triggers to listen for incoming events, such as when a new commit is pushed to a repository or when a pull request is initiated, and then automatically execute a build when new events come in. You can also configure triggers to build code on any changes to your source repository or only on changes that match certain criteria.

Google Professional Cloud Developer Exam Practice Test