Free Linux Foundation Kyverno-Certified-Associate Exam Questions

Become Linux Foundation Certified with updated Kyverno-Certified-Associate exam questions and correct answers

Page: 1 / 60

Total 299 Questions | Updated On: Mar 26, 2025

Add To Cart

Question 1

In the 'verify-manifest-integrity' Kyverno ClusterPolicy, which field specifies the public key used to verify the signatures of Deployment manifests?

A : attestors.entries.keys.publicKeys

B : spec.validationFailureAction

C : ignoreFields.objects.fields

D : metadata.annotations

Answer: A

Question 2

If you discover a potential security vulnerability in Kyverno, which method should you use to report it to the Kyverno security team?

A : Send an email to kyverno-security@googlegroups.com with detailed information.

B : Open a public issue on the Kyverno GitHub repository.

C : Post a message on Kyverno's Slack channel.

D : Submit a form on the Cloud Native Computing Foundation website.

Answer: A

Question 3

Which of the following is NOT a component of a check item in Kyverno's assertion trees?

A : mutate statement

B : assert statement

C : error statement

D : match statement

Answer: A

Question 4

What is the role of 'validationFailureAction: Enforce' in a Kyverno policy?

A : It only logs validation failures without blocking resource creation.

B : It ignores validation failures and allows resource creation.

C : It automatically fixes validation failures to comply with the policy.

D : It blocks resource creation if validation fails.

Answer: D

Question 5

Which Kubernetes operation is exempted from image size validation in the 'block-large-images' Kyverno policy?

A : UPDATE

B : DELETE

C : CREATE

D : RESTART

Answer: B

Page: 1 / 60

Total 299 Questions | Updated On: Mar 26, 2025

Add To Cart