Courseiva
Knowledge + Practice
CertificationsVendorsCareer RoadmapsLabs & ToolsStudy GuidesGlossaryPractice Questions
C
Courseiva

Free IT certification practice questions with explained answers for CCNA, CompTIA, AWS, Azure, Google Cloud, and more.

Certification Practice Questions

CCNA practice questionsSecurity+ SY0-701 practice questionsAWS SAA-C03 practice questionsAZ-104 practice questionsAZ-900 practice questionsCLF-C02 practice questionsA+ Core 1 practice questionsGoogle Cloud ACE practice questionsCySA+ CS0-003 practice questionsNetwork+ N10-009 practice questions
View all certifications →

Product

CertificationsCertification PathsExam TopicsPractice TestsExam Dumps vs Practice TestsStudy HubComparisons

Free Resources

Difficulty IndexLearn — Free ChaptersIT GlossaryFree Tools & LabsStudy GuidesCareer RoadmapsBrowse by VendorCisco Command ReferenceCCNA Scenarios

Company

AboutContactEditorial PolicyQuestion Writing PolicyTrust Center

Legal

Privacy PolicyTerms of Service

Courseiva is a free IT certification practice platform offering original exam-style practice questions, detailed explanations, topic-based practice, mock exams, readiness tracking, and study analytics for Cisco, CompTIA, Microsoft, AWS, and other technology certifications.

© 2026 Courseiva. Courseiva is operated by JTNetSolutions Ltd. All rights reserved.

Courseiva is an independent certification practice platform and is not affiliated with, endorsed by, or sponsored by Cisco, Microsoft, AWS, CompTIA, Google, ISC2, ISACA, or any other certification vendor. Vendor names and certification marks are used only to identify the exams learners are preparing for.

← Application Deployment and Security practice sets

200-901 Application Deployment and Security • Complete Question Bank

200-901 Application Deployment and Security — All Questions With Answers

Complete 200-901 Application Deployment and Security question bank — all 0 questions with answers and detailed explanations.

99
Questions
Free
No signup
Certifications/200-901/Practice Test/Application Deployment and Security/All Questions
Question 1easymultiple choice
Study the full Python automation breakdown →

A developer creates a Dockerfile for a Python web application. Which instruction should be used to copy the application source code into the container image?

Question 2easymultiple choice
Read the full Application Deployment and Security explanation →

A Docker container needs to be started in detached mode with port mapping from host port 8080 to container port 80. Which command accomplishes this?

Question 3easymultiple choice
Read the full Application Deployment and Security explanation →

In a docker-compose.yaml file, which key is used to define the container image to be built from a Dockerfile in the current directory?

Question 4mediummultiple choice
Read the full Application Deployment and Security explanation →

A company deploys a microservice using Kubernetes. The service must be accessible externally via a stable IP address and load-balanced across pods. Which Service type should be used?

Question 5mediummultiple choice
Study the full Python automation breakdown →

A CI/CD pipeline has a stage that runs security vulnerability scans on dependencies. Which tool is specifically designed to scan Python packages for known vulnerabilities?

Question 6mediummultiple choice
Read the full Application Deployment and Security explanation →

A developer is writing a Dockerfile for a Node.js application. They want to set a build-time variable for the application version that can be changed without modifying the Dockerfile. Which instruction should be used?

Question 7mediummultiple choice
Read the full Application Deployment and Security explanation →

A Kubernetes pod needs to read configuration data such as database hostname, which is non-sensitive and may change across environments. Which resource should be used to store this data and inject it into the pod?

Question 8mediummultiple choice
Read the full Application Deployment and Security explanation →

A developer needs to apply a Kubernetes deployment manifest from a file named 'deployment.yaml'. Which kubectl command should be used?

Question 9mediummultiple choice
Read the full Application Deployment and Security explanation →

In a Docker bridge network, two containers can communicate with each other using which identifier by default?

Question 10mediummultiple choice
Read the full Application Deployment and Security explanation →

A developer needs to view the logs of a running Docker container with ID 'abc123'. Which command should be used?

Question 11hardmultiple choice
Read the full Application Deployment and Security explanation →

A Kubernetes Deployment is configured with rolling update strategy. A new version of the image is pushed, and the deployment is updated. During the rollout, the new pods are failing health checks. Which command can be used to pause the rollout and prevent further updates?

Question 12hardmultiple choice
Read the full Application Deployment and Security explanation →

A CI/CD pipeline using GitHub Actions needs to build a Docker image and push it to Docker Hub. Which event trigger should be used to run the workflow only when code is pushed to the main branch?

Question 13hardmultiple choice
Read the full Application Deployment and Security explanation →

A developer is implementing secure coding practices to prevent SQL injection. Which approach is most effective when building a SQL query with user input?

Question 14hardmultiple choice
Read the full Application Deployment and Security explanation →

In a Docker Compose file with multiple services, one service depends on another to be healthy before starting. Which key should be used to express this dependency and ensure the dependent service is started first?

Question 15hardmultiple choice
Read the full Application Deployment and Security explanation →

A Kubernetes pod needs to run a database that requires persistent storage. Which volume type should be used to store data that persists beyond the pod lifecycle?

Question 16mediummulti select
Read the full Application Deployment and Security explanation →

Which TWO actions are best practices for managing secrets in a CI/CD pipeline?

Question 17mediummulti select
Read the full Application Deployment and Security explanation →

Which TWO Docker network drivers allow a container to communicate with the host's network stack directly?

Question 18hardmulti select
Read the full Application Deployment and Security explanation →

Which THREE options are valid methods to expose a Kubernetes service to external traffic?

Question 19easymultiple choice
Study the full Python automation breakdown →

A developer creates a Dockerfile with the following content: FROM python:3.9-slim, COPY app.py /app/, RUN pip install flask, EXPOSE 5000, CMD ["python", "/app/app.py"]. When building the image with 'docker build -t myapp .', what is the purpose of the EXPOSE instruction?

Question 20mediummultiple choice
Read the full Application Deployment and Security explanation →

A CI/CD pipeline for a microservice application includes stages: code commit, build Docker image, push to registry, deploy to staging, run integration tests, and deploy to production. The team wants to ensure that if integration tests fail, the pipeline stops and does not proceed to production. Which CI/CD concept is used to enforce this behavior?

Question 21mediummultiple choice
Read the full Application Deployment and Security explanation →

In a Kubernetes deployment, a developer needs to expose a set of pods internally within the cluster on a stable IP address. The pods are stateless and serve HTTP traffic. Which Service type should be used?

Question 22easymultiple choice
Read the full Application Deployment and Security explanation →

A developer runs the command: docker run -d -p 8080:80 --name web nginx. Which of the following best describes what happens?

Question 23hardmultiple choice
Read the full Application Deployment and Security explanation →

A team uses GitHub Actions for CI/CD. Their workflow includes a job that builds a Docker image and pushes it to a private registry. The job needs to authenticate to the registry using secrets stored in GitHub. Which approach is most secure for passing credentials?

Question 24mediummultiple choice
Read the full Application Deployment and Security explanation →

A developer writes a web application that accepts user input and displays it on a page. To prevent cross-site scripting (XSS), what is the most effective defense?

Question 25mediummultiple choice
Read the full Application Deployment and Security explanation →

In a Docker Compose file, a service 'web' depends on 'db'. The 'db' service uses a volume to persist data. Which compose key ensures that the database starts before the web service?

Question 26hardmultiple choice
Read the full Application Deployment and Security explanation →

A Kubernetes Deployment has replicas: 3. The team updates the container image to a new version. The rollout gets stuck because the new pod fails readiness probes. Which kubectl command will display the rollout status and help diagnose the issue?

Question 27easymultiple choice
Read the full Application Deployment and Security explanation →

A developer needs to share a Docker image with a colleague. They decide to push the image to a registry. Which Docker command pushes an image to a registry?

Question 28mediummultiple choice
Read the full Application Deployment and Security explanation →

A Kubernetes environment has multiple teams sharing the same cluster. One team wants to deploy applications without interfering with other teams' resources. Which Kubernetes resource should be used to isolate the team's resources?

Question 29hardmultiple choice
Read the full Application Deployment and Security explanation →

A developer has a Docker container running a database. They need to inspect the database logs to debug a connection issue. Which command will show the logs in real-time?

Question 30mediummultiple choice
Study the full Python automation breakdown →

A CI/CD pipeline for a Python project should run unit tests and check for known vulnerabilities in dependencies. Which tool can be integrated into the pipeline to perform dependency scanning?

Question 31mediummulti select
Read the full Application Deployment and Security explanation →

A developer is deploying a containerized application with Docker Compose. The application requires environment variables for database credentials that should not be hardcoded in the docker-compose.yml file. Which two methods securely provide these credentials? (Choose two.)

Question 32mediummulti select
Read the full Application Deployment and Security explanation →

A Kubernetes cluster has a deployment named 'frontend' that needs to be updated to a new image version. The update should be performed with zero downtime. Which three kubectl commands or approaches can achieve this? (Choose three.)

Question 33hardmulti select
Read the full Application Deployment and Security explanation →

A developer is writing a CI/CD pipeline using Jenkins Declarative Pipeline. They want to ensure that sensitive credentials (e.g., API keys) are never exposed in console logs. Which two security practices should be implemented? (Choose two.)

Question 34easymultiple choice
Read the full Application Deployment and Security explanation →

You are writing a Dockerfile. Which instruction should you use to set the working directory for subsequent RUN, CMD, ENTRYPOINT, COPY, and ADD instructions?

Question 35mediummultiple choice
Read the full Application Deployment and Security explanation →

A developer runs 'docker run -d -p 8080:80 --name web nginx:alpine'. The container fails to start. Which command is the most appropriate to investigate the issue?

Question 36hardmultiple choice
Read the full Application Deployment and Security explanation →

In a Kubernetes cluster, you need to expose a set of pods running a web application to external traffic on a specific port. Which Service type should you use to provide a stable external IP address?

Question 37mediummultiple choice
Read the full Application Deployment and Security explanation →

A CI/CD pipeline includes stages for code commit, build, unit test, integration test, staging deploy, and production deploy. Which change would best prevent a faulty build from reaching production?

Question 38easymultiple choice
Study the full Python automation breakdown →

You are writing a Dockerfile for a Python application. Which instruction should you use to install the dependencies from a requirements.txt file?

Question 39mediummultiple choice
Read the full Application Deployment and Security explanation →

A developer needs to share a Docker image built from a Dockerfile with team members. Which command correctly builds the image and tags it as 'myapp:v1'?

Question 40hardmultiple choice
Read the full Application Deployment and Security explanation →

A Kubernetes Deployment manages a set of identical pods. You update the container image to a new version. The rollout gets stuck. Which kubectl command should you use to view the rollout status and determine the cause?

Question 41mediummultiple choice
Read the full Application Deployment and Security explanation →

In a Docker Compose file, you want to ensure that the 'web' service starts only after the 'db' service is healthy. Which key should you use under the 'web' service?

Question 42easymultiple choice
Read the full Application Deployment and Security explanation →

A developer wants to run a container in the background with port mapping and a named volume. Which command accomplishes this?

Question 43mediummultiple choice
Read the full Application Deployment and Security explanation →

A web application is vulnerable to SQL injection. Which secure coding practice should the developer implement in the code to prevent this?

Question 44hardmultiple choice
Read the full Application Deployment and Security explanation →

In a Kubernetes cluster, you need to store non-sensitive configuration data (e.g., database hostname) that can be consumed by pods as environment variables. Which resource should you use?

Question 45mediummultiple choice
Read the full Application Deployment and Security explanation →

A developer needs to ensure that environment variables containing database credentials are not hardcoded in the application code. Which approach is most secure for managing secrets in a CI/CD pipeline?

Question 46mediummulti select
Read the full Application Deployment and Security explanation →

Which TWO commands are used to view information about Docker containers? (Select two.)

Question 47hardmulti select
Read the full Application Deployment and Security explanation →

Which THREE are valid Kubernetes Service types? (Select three.)

Question 48easymulti select
Read the full Application Deployment and Security explanation →

Which TWO practices help prevent sensitive data exposure in a CI/CD pipeline? (Select two.)

Question 49easymultiple choice
Study the full Python automation breakdown →

A developer is creating a Dockerfile for a Python Flask application. The application runs on port 5000. Which directive should be used to document that the container listens on this port?

Question 50mediummultiple choice
Read the full Application Deployment and Security explanation →

A team uses a Jenkins declarative pipeline to deploy a microservice. The pipeline includes stages: Checkout, Build Docker Image, Run Unit Tests, Push to Registry, Deploy to Staging, and Deploy to Production. Which stage should run immediately after 'Build Docker Image' to ensure code quality before the image is pushed?

Question 51hardmultiple choice
Read the full Application Deployment and Security explanation →

A Kubernetes deployment is configured with replicas: 3. During a rolling update, the deployment strategy is set to RollingUpdate with maxSurge: 1 and maxUnavailable: 0. What is the maximum number of pods that will be running during the update?

Question 52mediummultiple choice
Read the full Application Deployment and Security explanation →

A developer is writing a web application and needs to prevent SQL injection attacks. Which coding practice is most effective?

Question 53easymultiple choice
Read the full Application Deployment and Security explanation →

In Docker, which command is used to build an image from a Dockerfile and tag it as 'myapp:v1'?

Question 54mediummultiple choice
Read the full Application Deployment and Security explanation →

A DevOps engineer runs a container using 'docker run -d -p 8080:80 nginx'. The host firewall blocks incoming traffic on port 8080 from external networks but allows from the local host. Which command would allow the engineer to test the container's web server from the same machine?

Question 55hardmultiple choice
Read the full Application Deployment and Security explanation →

A Kubernetes cluster runs a microservice that needs to read configuration values from a ConfigMap and sensitive database credentials from a Secret. The pod manifest references both resources. How should the Secret be mounted to avoid exposing sensitive data in logs or environment variables?

Question 56easymultiple choice
Read the full Application Deployment and Security explanation →

In a Docker Compose file, which key is used to define the dependency order between services?

Question 57mediummultiple choice
Read the full Application Deployment and Security explanation →

A developer commits code to a GitHub repository and wants automated tests to run, followed by building a Docker image and pushing it to Docker Hub only if tests pass. Which CI/CD tool can be configured using a YAML file placed in the .github/workflows directory?

Question 58hardmultiple choice
Read the full Application Deployment and Security explanation →

A developer uses Kubernetes and wants to expose a deployment named 'web-app' externally via a cloud load balancer. Which Service type should be used?

Question 59mediummultiple choice
Read the full Application Deployment and Security explanation →

A developer is writing a Dockerfile for a Node.js application. The application uses environment variables for configuration. Which Dockerfile instruction should be used to set a default value for the NODE_ENV variable?

Question 60easymultiple choice
Read the full Application Deployment and Security explanation →

Which Docker networking mode provides the most isolation by not connecting the container to any network?

Question 61mediummultiple choice
Read the full Application Deployment and Security explanation →

A CI/CD pipeline uses GitLab CI. The pipeline must build a Docker image and then run security scans on the image before pushing. Which GitLab CI keyword allows defining a sequence of jobs that must run in order?

Question 62hardmultiple choice
Read the full Application Deployment and Security explanation →

A developer wants to ensure that a containerized application restarts automatically if it exits with a non-zero code. The application is run using Docker. Which flag should be used?

Question 63mediummultiple choice
Read the full Application Deployment and Security explanation →

A Kubernetes pod runs two containers that need to share a filesystem. Which volume type should be used to enable file sharing between the containers within the same pod?

Question 64mediummulti select
Read the full Application Deployment and Security explanation →

A developer is building a web application and wants to implement security best practices. Which TWO actions should be taken? (Choose two.)

Question 65mediummulti select
Read the full Application Deployment and Security explanation →

A developer is using Docker Compose to run a multi-service application. Which THREE keys are valid top-level keys in a docker-compose.yml file? (Choose three.)

Question 66hardmulti select
Read the full Application Deployment and Security explanation →

A Kubernetes administrator wants to use kubectl to troubleshoot a pod named 'my-pod' that is not starting. Which TWO commands are useful? (Choose two.)

Question 67easymultiple choice
Study the full Python automation breakdown →

A developer wants to create a Docker image that runs a Python application. Which instruction should be placed at the end of the Dockerfile to specify the command that runs when the container starts?

Question 68mediummultiple choice
Read the full Application Deployment and Security explanation →

A Docker container running a web application needs to be accessible on the host's port 8080. The application inside the container listens on port 80. Which docker run command achieves this?

Question 69mediummultiple choice
Read the full DNS explanation →

In a Kubernetes cluster, a developer needs to ensure that a set of pods can be accessed by other pods using a stable IP address and DNS name, even if pods are recreated. Which resource should be created?

Question 70hardmultiple choice
Read the full Application Deployment and Security explanation →

A CI/CD pipeline is configured to build a Docker image, run unit tests, and push the image to a registry. To ensure that only successfully tested images are pushed, which stage order is correct?

Question 71mediummultiple choice
Read the full Application Deployment and Security explanation →

A developer needs to store a database password securely in a Kubernetes cluster. Which resource should be used?

Question 72easymultiple choice
Read the full Application Deployment and Security explanation →

Which Docker network driver allows a container to share the host's network stack, giving it direct access to host interfaces?

Question 73mediummultiple choice
Read the full Application Deployment and Security explanation →

A developer is writing a web application and wants to prevent SQL injection attacks. Which coding practice should be followed when constructing SQL queries?

Question 74hardmultiple choice
Read the full Application Deployment and Security explanation →

In a Jenkins declarative pipeline, a stage named 'Deploy to Production' should only run after manual approval. Which directive should be used to achieve this?

Question 75easymultiple choice
Read the full Application Deployment and Security explanation →

A developer runs 'docker-compose up -d' for a multi-service application. What does the '-d' flag do?

Question 76mediummultiple choice
Read the full Application Deployment and Security explanation →

A Kubernetes pod contains two containers that need to share a local filesystem. Which volume type should be used to enable this?

Question 77hardmultiple choice
Read the full Application Deployment and Security explanation →

A developer notices that after a new deployment, the application is not receiving traffic. The Service selector does not match the pod labels. Which kubectl command can be used to inspect the Service's selector?

Question 78mediummultiple choice
Read the full Application Deployment and Security explanation →

Which Docker command is used to view the logs of a running container in real-time?

Question 79easymultiple choice
Read the full Application Deployment and Security explanation →

In a Dockerfile, which instruction is used to set an environment variable that will be available at runtime?

Question 80mediummultiple choice
Read the full Application Deployment and Security explanation →

A developer wants to perform a rolling update of a Kubernetes Deployment. Which command will update the image and initiate the rollout?

Question 81hardmultiple choice
Read the full Application Deployment and Security explanation →

A CI/CD pipeline uses GitHub Actions. The workflow should trigger only when a pull request is opened against the 'main' branch. Which 'on' trigger configuration is correct?

Question 82mediummulti select
Read the full Application Deployment and Security explanation →

Which TWO practices help prevent hardcoded credentials in application code? (Choose TWO.)

Question 83hardmulti select
Read the full Application Deployment and Security explanation →

Which THREE steps are essential in a typical CI/CD pipeline for a containerized application? (Choose THREE.)

Question 84mediummulti select
Read the full Application Deployment and Security explanation →

Which TWO Kubernetes resources are used to provide configuration data to pods? (Choose TWO.)

Question 85easymultiple choice
Study the full Python automation breakdown →

A developer creates a Dockerfile for a Python web application. Which instruction should be used to define the working directory inside the container for subsequent commands?

Question 86mediummultiple choice
Read the full Application Deployment and Security explanation →

A team is deploying a microservice that must scale independently. The service uses environment variables for configuration. Which Kubernetes resource should be used to store non-sensitive configuration data separate from the container image?

Question 87mediummultiple choice
Read the full Application Deployment and Security explanation →

A developer wants to run a Docker container in detached mode, mapping host port 8080 to container port 80, and mounting a host directory for persistent data. Which command accomplishes this?

Question 88mediummultiple choice
Read the full Application Deployment and Security explanation →

In a CI/CD pipeline using Jenkins, which stage is typically executed immediately after the build stage to ensure code quality before deployment?

Question 89hardmultiple choice
Read the full Application Deployment and Security explanation →

A Kubernetes pod has two containers: a main application and a sidecar proxy. They need to communicate via localhost. Which pod networking model allows this?

Question 90easymultiple choice
Read the full Application Deployment and Security explanation →

A developer needs to enforce HTTPS for a web application. Which security measure should be implemented in the application or reverse proxy?

Question 91mediummultiple choice
Read the full Application Deployment and Security explanation →

A docker-compose.yml defines a web service with environment variables. Which key in the service definition should be used to set environment variables?

Question 92hardmultiple choice
Read the full Application Deployment and Security explanation →

A company uses GitHub Actions for CI/CD. They want to automatically scan dependencies for known vulnerabilities on every push. Which action should be added to the workflow?

Question 93mediummultiple choice
Read the full Application Deployment and Security explanation →

A Kubernetes Deployment is updated with a new image tag, but the rollout fails. Which kubectl command should be used to view the rollout status and troubleshoot?

Question 94mediummultiple choice
Read the full Application Deployment and Security explanation →

A developer needs to prevent SQL injection in a web application. Which coding practice should be used when constructing database queries?

Question 95easymultiple choice
Read the full Application Deployment and Security explanation →

Which Docker command is used to view the logs of a running container in real-time?

Question 96hardmultiple choice
Read the full Application Deployment and Security explanation →

A Kubernetes Service must expose a pod running a database to other pods in the same cluster, but not externally. Which Service type should be used?

Question 97mediummulti select
Read the full Application Deployment and Security explanation →

A developer is writing a Dockerfile for a Node.js application. Which TWO instructions are commonly used to define the command that runs when the container starts?

Question 98mediummulti select
Read the full Application Deployment and Security explanation →

A CI/CD pipeline includes stages for security scanning. Which TWO tools or services are specifically designed for dependency vulnerability scanning?

Question 99hardmulti select
Read the full Application Deployment and Security explanation →

A company is adopting DevSecOps practices. Which THREE practices should be implemented to secure application deployment?

Practice tests

Scored 10-question sessions with instant feedback and explanations.

200-901 Practice Test 1 — 25 Questions→200-901 Practice Test 2 — 25 Questions→200-901 Practice Test 3 — 25 Questions→200-901 Practice Test 4 — 25 Questions→200-901 Practice Test 5 — 25 Questions→200-901 Practice Exam 1 — 20 Questions→200-901 Practice Exam 2 — 20 Questions→200-901 Practice Exam 3 — 20 Questions→200-901 Practice Exam 4 — 20 Questions→Free 200-901 Practice Test 1 — 30 Questions→Free 200-901 Practice Test 2 — 30 Questions→Free 200-901 Practice Test 3 — 30 Questions→200-901 Practice Questions 1 — 50 Questions→200-901 Practice Questions 2 — 50 Questions→200-901 Exam Simulation 1 — 100 Questions→

Practice by domain

Each domain maps to a weighted exam section. Focus on the domain where you are weakest.

Software Development and DesignUnderstanding and Using APIsApplication Deployment and SecurityCisco Platforms and DevelopmentNetwork FundamentalsInfrastructure and Automation

Practice by scenario

Filter questions by type — troubleshooting, exhibit, drag-and-drop, PBQ, ACLs, OSPF, and more.

Browse scenarios→

Continue studying

All Application Deployment and Security setsAll Application Deployment and Security questions200-901 Practice Hub