Main Flashcards
What is GitHub Flow?
A lightweight branching strategy where changes are made through feature branches and merged after approval through pull requests
What are the benefits of trunk-based development?
Reduced merge complexity
What is a feature branch strategy?
A branching strategy where developers create branches for new features and merge them back when complete
What is Azure Boards?
A service in Azure DevOps that provides a complete set of agile tools to support planning and tracking work
How can you integrate GitHub repositories with Azure Boards?
By connecting Azure Boards to GitHub using the GitHub connection feature and linking work items to GitHub commits and pull requests
What is cycle time metric in DevOps?
measures the time it takes for your team to complete work items once they begin actively working on them.
What does lead time measure in DevOps?
measures the total time elapsed from the creation of work items to their completion
What is time to recovery in DevOps metrics?
The time it takes to recover from a failure or incident
How can you design a dashboard for flow of work visualization?
By including widgets that show cycle times
What metrics are important for project planning in DevOps?
Metrics like velocity
What development metrics should be tracked in a DevOps environment?
Metrics like code coverage
What testing metrics are critical for DevOps practices?
Metrics like test pass rate
What security metrics should be included in DevOps dashboards?
Metrics like vulnerability count
What delivery metrics are important in DevOps?
Metrics like deployment frequency
What operations metrics should be tracked in a DevOps environment?
Metrics like system availability
What is the purpose of a wiki in Azure DevOps or GitHub?
To document project information
How can Markdown be used effectively in project documentation?
By using its syntax for headers
What is Mermaid syntax used for in documentation?
For creating diagrams like flowcharts
What should be included in release documentation?
Information about new features
What is API documentation and why is it important?
Documentation that describes how to use an API
How can documentation be automated from Git history?
By using tools that generate changelogs or release notes based on commit messages and tags
What are webhooks in DevOps?
Mechanisms that allow systems to notify other systems about events as they occur
How can webhooks be used to integrate different tools in a DevOps workflow?
By configuring them to trigger actions in one system when events occur in another system
How can Microsoft Teams be integrated with Azure DevOps?
Through the Azure DevOps connector in Microsoft Teams
What benefits does integrating Microsoft Teams with GitHub provide?
It enables teams to receive notifications
How can you configure Azure Boards and GitHub repositories integration?
By installing the Azure Boards app for GitHub and configuring the connection in Azure DevOps project settings
What is the purpose of process diagrams in project documentation?
To visually represent workflows
What is trunk-based development?
A source control branching model where developers integrate changes directly to a single branch called ‘trunk’ or ‘main’
When should you use a release branch strategy?
When you need to maintain multiple versions of software in production simultaneously
What is a pull request in GitHub?
A mechanism to notify team members about changes pushed to a repository and request code review
How do branch policies in Azure Repos help maintain code quality?
By enforcing requirements like code reviews
What are branch protections in GitHub?
Rules that control who can push to branches and what conditions must be met before branches can be merged
How can you implement branch merging restrictions in GitHub?
By configuring branch protection rules in repository settings
What is the purpose of requiring pull request approvals?
To ensure code changes are reviewed before they are merged into protected branches
What is Git Large File Storage (LFS)?
An extension to Git that replaces large files with text pointers while storing the file contents on a remote server
When should you use Git LFS?
When your repository contains large binary files like images
What is git-fat and how does it differ from Git LFS?
Git-fat is an alternative to Git LFS that manages large files by storing references to them; it’s more manual but can be more flexible
What is Scalar in Git?
A tool that optimizes Git for large repositories by reducing the amount of data fetched and improving performance
How can cross-repository sharing improve source control management?
By allowing code reuse across multiple repositories without duplication
What permission levels can be configured in Azure Repos?
Permissions like Read
How are permissions managed in GitHub repositories?
Through repository roles like read
What is the purpose of tagging in Git?
To mark specific points in a repository’s history as important
How can you use tagging to organize a source control repository?
By creating semantic version tags for releases and descriptive tags for significant milestones
How can you recover specific data using Git commands?
By using commands like git checkout
How do you remove sensitive data from a Git repository?
By using tools like git filter-branch or BFG Repo-Cleaner to rewrite history and remove the sensitive content
What is a package registry in DevOps?
A centralized repository for storing and distributing software packages
What is GitHub Packages registry?
A package hosting service integrated with GitHub that allows publishing and consuming packages within GitHub
What is Azure Artifacts?
A package management service in Azure DevOps that allows teams to share packages and integrate with CI/CD pipelines
What are package feeds in Azure Artifacts?
Collections of packages that can be shared with team members and used in build processes
What are feed views in Azure Artifacts?
Filters that control which package versions are visible and available for use
What is an upstream source in package management?
A package source that your feed connects to in order to find packages not present in your feed
How do upstream sources help in package management?
They allow you to consume packages from public sources while only storing the ones you use
What is semantic versioning (SemVer)?
A versioning system using MAJOR.MINOR.PATCH format to indicate compatibility changes
What do the numbers represent in semantic versioning (1.2.3)?
Major version (1)
When should you increment the major version in SemVer?
When you make incompatible API changes
When should you increment the minor version in SemVer?
When you add functionality in a backward-compatible manner
When should you increment the patch version in SemVer?
When you make backward-compatible bug fixes
What is CalVer (Calendar Versioning)?
A versioning convention based on release date
When is CalVer more appropriate than SemVer?
For projects with regular time-based releases or where chronology is more important than API changes
What is the purpose of versioning pipeline artifacts?
To track and identify specific builds
How can artifacts be versioned in Azure Pipelines?
By using build variables like Build.BuildNumber or custom versioning schemes
What are quality gates in a release pipeline?
Checkpoints that verify certain criteria are met before proceeding with deployment
What are release gates in Azure DevOps?
Automated pre- or post-deployment conditions that must be met to proceed with or finalize a deployment
How can security gates be implemented in a pipeline?
By integrating security scanning tools that must pass before deployment continues
What is a governance gate in a release pipeline?
A checkpoint that ensures compliance with organizational policies and standards
What is a comprehensive testing strategy?
A plan that incorporates different types of tests at various stages of development and deployment
What are local tests in a testing strategy?
Tests run by developers on their local machines before committing code
What are unit tests and where do they fit in a pipeline?
Tests for individual components or functions
What are integration tests in a pipeline?
Tests that verify different components work correctly together
What are load tests and when should they be implemented?
Tests that verify system performance under expected load
How can tests be implemented in Azure Pipelines?
By adding test tasks to pipeline definitions that run the appropriate test tools
What is a test agent in Azure DevOps?
A service that runs automated tests on behalf of the build or release pipeline
How can test results be integrated into a pipeline?
By configuring test tasks to publish results to Azure DevOps or other test reporting systems
What is code coverage analysis?
A measure of how much code is executed during tests
Why is code coverage important in a DevOps pipeline?
It helps identify untested code and potential gaps in test coverage
What is GitHub Actions?
A CI/CD platform integrated with GitHub that allows automating workflows based on GitHub events
What are the advantages of using GitHub Actions for deployment automation?
Native integration with GitHub
What is Azure Pipelines?
A cloud service in Azure DevOps that provides CI/CD capabilities for any platform and cloud
What factors should be considered when selecting a deployment automation solution?
Integration capabilities
What is a GitHub runner?
An application that runs GitHub Actions workflows
What is an Azure DevOps agent?
A software service that runs jobs in a pipeline
What types of GitHub runners are available?
GitHub-hosted runners and self-hosted runners
What types of Azure DevOps agents are available?
Microsoft-hosted agents and self-hosted agents
What factors should be considered when designing a runner/agent infrastructure?
Scalability
How does licensing affect agent infrastructure decisions?
The number of agents may be limited by license
How can Azure Pipelines be integrated with GitHub repositories?
By configuring the pipeline to use GitHub as a source and authenticating with GitHub
What are pipeline trigger rules?
Conditions that determine when a pipeline should automatically run
What trigger types are available in GitHub Actions?
push
What trigger types are available in Azure Pipelines?
CI triggers
What is YAML in the context of pipelines?
A markup language used to define pipeline configurations as code
What are the advantages of using YAML for pipeline definitions?
Version control integration
How can you control job execution order in a pipeline?
By defining dependencies between jobs using the dependsOn property
What is parallelism in pipeline execution?
Running multiple jobs or tasks simultaneously to reduce overall execution time
What is a multi-stage pipeline?
A pipeline that includes multiple distinct stages like build
What is a hybrid pipeline scenario?
A pipeline that spans multiple environments or technologies
What are VM templates in pipeline configuration?
Predefined configurations for virtual machines used in pipeline jobs
What are the advantages of using self-hosted runners or agents?
Control over the environment
What are YAML templates in Azure Pipelines?
Reusable pipeline definitions that can be included in other pipeline definitions
What is a task group in Azure DevOps?
A group of tasks bundled together for reuse across multiple pipelines
What are pipeline variables?
Named values that can be used in pipeline definitions and modified at runtime
What are variable groups in Azure DevOps?
Collections of related variables that can be used across multiple pipelines
What are checks in YAML-based environments?
Controls that verify conditions before a deployment proceeds
What are approvals in YAML-based environments?
Manual interventions required before a deployment can proceed
What is blue-green deployment?
A strategy where two identical environments exist
What is canary deployment?
A strategy where a new version is deployed to a small subset of users before full deployment
What is ring-based deployment?
A strategy where deployment occurs in expanding rings of users
What is progressive exposure deployment?
A strategy where a new version is gradually exposed to more users over time
What are feature flags in deployment strategy?
Configuration options that allow features to be enabled or disabled without redeploying
What is A/B testing in deployment?
A strategy where two versions run simultaneously to compare performance or user response
How can you ensure dependencies are reliably ordered in a deployment pipeline?
By defining dependencies between tasks
What is a VIP swap in deployment?
A technique where the virtual IP addresses of staging and production environments are swapped
How does load balancing minimize downtime during deployments?
By directing traffic away from instances being updated while maintaining service through other instances
What is a rolling deployment?
A deployment strategy where instances are updated one at a time or in small batches
What are deployment slots in Azure App Service?
Pre-deployed environments that can be swapped with the production environment to minimize downtime
What is a hotfix path plan?
A strategy for quickly addressing critical issues in production with minimal risk
What should be included in a resiliency strategy for deployment?
Rollback capabilities
What is Azure App Configuration Feature Manager?
A service that helps manage feature flags and application settings
How can feature flags be implemented in .NET applications?
Using the Microsoft.FeatureManagement libraries with Azure App Configuration
What types of containerized deployments can be implemented?
Docker containers deployed to Kubernetes
What are considerations for binary deployments?
Versioning
How can scripts be used effectively in deployments?
For environment configuration
What special considerations exist for database deployments?
Data integrity
What is configuration management in application infrastructure?
The process of systematically handling changes to a system’s configuration
What configuration management technologies are available for infrastructure?
Ansible
What factors should be considered when choosing a configuration management technology?
Platform support
What is Infrastructure as Code (IaC)?
The practice of managing infrastructure through code rather than manual processes
What are the benefits of using Infrastructure as Code?
Consistency
How does source control integrate with Infrastructure as Code?
By storing infrastructure code in repositories and applying the same practices used for application code
What is desired state configuration?
A declarative model that specifies the desired end state of the infrastructure
What is Azure Automation State Configuration?
An Azure service that provides PowerShell DSC as a cloud service
What is Azure Resource Manager (ARM)?
A deployment and management service for Azure that provides a management layer to create
What is Bicep in Azure?
A domain-specific language that simplifies the authoring of ARM templates
What is Azure Automanage Machine Configuration?
A service that helps maintain and enforce configuration compliance on Azure VMs
What are Azure Deployment Environments?
Preconfigured environments that developers can spin up on demand for development and testing
How do Azure Deployment Environments support self-deployment?
By providing templates that developers can deploy without requiring operations involvement
How can pipeline health be monitored?
By tracking metrics like failure rate
What is a flaky test in pipeline context?
A test that sometimes passes and sometimes fails without code changes
How can a pipeline be optimized for cost?
By reducing build time
How can a pipeline be optimized for time?
By parallelizing jobs
How can a pipeline be optimized for performance?
By using faster hardware
How can a pipeline be optimized for reliability?
By implementing retry mechanisms
What is pipeline concurrency?
The number of pipeline jobs that can run simultaneously
How does pipeline concurrency affect performance?
Higher concurrency allows more jobs to run in parallel
How does pipeline concurrency affect cost?
Higher concurrency typically requires more agents or runners
What should be considered in a retention strategy for pipeline artifacts?
Storage costs
What are pipeline dependencies and how should they be managed?
External resources the pipeline depends on
What is the difference between classic and YAML pipelines in Azure DevOps?
Classic pipelines use a UI-based editor
What are the steps to migrate from classic to YAML pipelines?
Export the classic pipeline to YAML
What is a Service Principal in Azure?
An identity created for use with applications
What is a Managed Identity in Azure?
A feature of Azure AD that provides Azure services with an automatically managed identity in Azure AD
What is the difference between system-assigned and user-assigned Managed Identity?
System-assigned is tied to a specific resource and deleted when the resource is deleted
When would you choose a Service Principal over a Managed Identity?
When you need to access Azure resources from outside of Azure or need more control over the credentials lifecycle
When would you choose a Managed Identity over a Service Principal?
When the application runs in Azure and you want simplified credential management
What are GitHub Apps in the context of authentication?
Applications that can be installed directly on organizations and repositories providing specific permissions
What is GITHUB_TOKEN?
An automatically generated token provided to GitHub Actions workflows for authentication
What are GitHub personal access tokens?
Tokens that function like passwords for authenticating to GitHub via API or command line
What are the security considerations when using GitHub personal access tokens?
They have broad permissions tied to your account
What is an Azure DevOps service connection?
A way to connect Azure DevOps to external services and subscriptions
What are Azure DevOps personal access tokens used for?
Authenticating to Azure DevOps APIs and services from scripts or tools
What permissions can be configured in GitHub?
Repository permissions
How are roles implemented in GitHub?
Through repository roles like read
What are security groups in Azure DevOps?
Collections of users that can be assigned specific sets of permissions
What are the built-in security groups in Azure DevOps?
Groups like Project Administrators
What is the difference between basic and stakeholder access in Azure DevOps?
Basic provides full access to Azure DevOps features
What is outside collaborator access in GitHub?
A role for users who aren’t members of an organization but have access to specific repositories
How can you configure projects in Azure DevOps?
Through the organization settings
How are teams configured in Azure DevOps?
Through project settings
What is Azure Key Vault?
A cloud service for securely storing and accessing secrets like keys
How can Azure Key Vault be used in automation?
By integrating it with pipelines to securely retrieve secrets during runtime
How are secrets managed in GitHub Actions?
Through repository or organization-level secrets that are encrypted and injected as environment variables
How are secrets managed in Azure Pipelines?
Through variable groups
What are Azure Pipelines secure files?
Files that contain sensitive information and are encrypted at rest
What strategy should be implemented for managing sensitive files during deployment?
Using secure files
How can pipelines be designed to prevent leakage of sensitive information?
By limiting log verbosity
What is security scanning in DevOps?
Automated analysis of code and infrastructure to identify security vulnerabilities
What is dependency scanning?
Analyzing application dependencies for known vulnerabilities
What is code scanning?
Analyzing source code for security vulnerabilities and coding errors
What is secret scanning?
Detection of secrets like API keys or credentials committed to repositories
What is license scanning?
Analyzing code dependencies to identify their licenses and potential compliance issues
What is Microsoft Defender for Cloud DevOps Security?
A service that provides security scanning for DevOps environments
What is GitHub Advanced Security?
A suite of security features including code scanning
How can GitHub Advanced Security be configured for Azure DevOps?
By enabling it in project settings and configuring the scanning features
How can GitHub Advanced Security be integrated with Microsoft Defender for Cloud?
By connecting GitHub repositories to Defender for Cloud for unified security monitoring
What is container scanning?
Analyzing container images for vulnerabilities in the operating system and application layers
How can container image scanning be automated in a pipeline?
By integrating vulnerability scanning tools as pipeline tasks
How can CodeQL analysis be configured to run in a container?
By using Docker actions in GitHub Actions or container jobs in Azure Pipelines
What is Dependabot in GitHub?
A security feature that automatically detects vulnerable dependencies and creates pull requests to update them
How do Dependabot alerts work?
They notify you when vulnerabilities are found in your dependencies
How can Dependabot be used to analyze licensing of open-source components?
By configuring it to check for license compliance as part of dependency scanning
What is Azure Monitor?
A comprehensive solution for collecting
What is Log Analytics?
A tool in Azure Monitor for editing and running log queries on data collected by Azure Monitor
How can Azure Monitor be integrated with DevOps tools?
Through monitoring agents
What is Application Insights?
A feature of Azure Monitor that provides application performance monitoring and user behavior analytics
What is VM Insights?
A feature of Azure Monitor that provides performance monitoring for virtual machines
What is Container Insights?
A feature of Azure Monitor that provides performance monitoring for container environments
What is Storage Insights?
A feature of Azure Monitor that provides monitoring for Azure Storage services
What is Network Insights?
A feature of Azure Monitor that provides monitoring for network resources and connections
How can monitoring be configured in GitHub?
By enabling insights in repository settings and configuring data collection
What are GitHub Insights?
Analytics tools that provide data about repository activity
How can charts be created and configured in GitHub?
Through the Insights tab in repositories
How can alerts be configured for events in GitHub Actions?
By setting up notification rules for workflow runs and their statuses
How can alerts be configured for events in Azure Pipelines?
By creating alert rules in Azure DevOps project settings
What are infrastructure performance indicators?
Metrics that show how well infrastructure components like CPU
How can infrastructure performance indicators be inspected?
Through monitoring dashboards
What metrics should be analyzed from collected telemetry?
Usage patterns
What is distributed tracing?
A method for tracking a request as it flows through distributed systems
How can distributed tracing be inspected using Application Insights?
Through the end-to-end transaction view and Application Map
What is Kusto Query Language (KQL)?
A query language used to analyze data in Azure Monitor logs
How can basic KQL queries be used to interrogate logs?
By writing queries to filter
What is a metric alert in Azure Monitor?
An alert that triggers when a metric crosses a threshold
What is a log alert in Azure Monitor?
An alert that triggers based on a log query result
What is an activity log alert in Azure Monitor?
An alert that triggers when specific events occur in the Azure Activity Log
What is a smart detection alert in Application Insights?
An alert that uses machine learning to detect anomalies in application behavior
What is a Deployment Group in Azure DevOps?
A logical set of deployment target machines that can be used in release pipelines
What is the primary purpose of GitHub Issues?
To track features
How can you link a GitHub Issue to a pull request?
By using keywords like “Closes #123” or “Fixes #123” in the pull request description or commit message
What is source traceability in DevOps?
The ability to track changes in source code back to their requirements or work items
How can you implement bug traceability in Azure DevOps?
By linking bugs to the code changes that fix them and to the test cases that verify the fixes
What is quality traceability?
The ability to track how quality assurance activities relate to requirements and code changes
What is the purpose of integration between Azure Boards and GitHub repositories?
To connect work items in Azure Boards with code changes in GitHub
How can you track the flow of work using Azure Boards?
By using boards
What are the key components of effective release documentation?
Clear description of changes
How can you use Markdown to create structured documentation?
By using headers for organization
What is the benefit of using Mermaid syntax for process diagrams?
It allows diagrams to be version-controlled alongside code and renders directly in Markdown documents
How can webhooks improve DevOps processes?
By enabling automation between different systems and providing real-time notifications of important events
What metrics should be tracked to measure the effectiveness of a DevOps pipeline?
Deployment frequency
How can you implement traceability between requirements and code changes?
By linking work items to commits
What is the purpose of configuring team notifications in Azure DevOps?
To ensure team members are informed about relevant events like work item updates
How can you use GitHub issues for managing work in a DevOps environment?
By creating
What information should be captured in bug traceability?
Steps to reproduce
How can you track quality throughout the development lifecycle?
By linking requirements to test cases
What is the difference between git reset and git revert?
Git reset changes the state of the branch pointer
What is a good branching strategy for continuous delivery?
Trunk-based development or a simplified feature branch workflow with short-lived branches
How can you enforce code quality in a branch strategy?
By implementing branch policies that require successful builds
What is the purpose of branch policies in Azure DevOps?
To enforce quality control processes before changes can be merged into protected branches
How can you manage long-running feature branches effectively?
By regularly merging changes from the main branch to avoid integration issues later
What is the advantage of using pull requests for code integration?
They provide a structured process for code review
How can you implement a hotfix branch strategy?
By creating branches from production tags
What is the purpose of branch naming conventions?
To provide clarity about the purpose of branches and organize them logically
How can you manage release branches in a continuous delivery environment?
By creating them only when needed for release stabilization and merging hotfixes back to the main branch
What are the key considerations when designing a branching strategy?
Team size
How can you use Git tags to mark release points?
By creating annotated tags with version numbers at stable points in the repository history
What is the difference between lightweight and annotated tags in Git?
Lightweight tags are simple pointers to commits
How can you use Git hooks to enforce branching policies?
By implementing pre-receive hooks that validate branch names
What strategy should be used for managing dependencies across repositories?
Using package management
How can you implement a one-way integration branch strategy?
By merging changes from a source branch to a target branch without merging back
What is the purpose of squash merging in pull requests?
To combine all commits from a feature branch into a single commit in the target branch
How can you enforce linear history in a Git repository?
By requiring fast-forward merges or rebase before merge in branch policies
What is the difference between merge and rebase in Git?
Merge preserves history but creates a merge commit
How can you manage a repository with multiple release versions?
By maintaining separate release branches for each supported version and applying fixes to all relevant branches
What is the purpose of a .gitignore file?
To specify files and directories that Git should ignore and not track
How can you clean up stale branches in a Git repository?
By regularly reviewing and deleting branches that have been merged or are no longer needed
What is a monorepo and when should it be used?
A single repository containing multiple projects; useful when projects are tightly coupled and need to be versioned together
What are the challenges of using a monorepo strategy?
Repository size
How can you implement a multi-repo strategy effectively?
By using package management for dependencies
What is the purpose of Git references (refs)?
To provide human-readable names for commits
How can you use Git submodules for cross-repository sharing?
By including one repository inside another at a specific path and commit
What is the purpose of Git worktrees?
To check out multiple branches simultaneously into separate working directories
How can you optimize Git performance for large repositories?
By using shallow clones
What is the benefit of using signed commits and tags?
To verify the authenticity of commits and ensure they came from trusted contributors
How can you enforce repository governance through branch protections?
By requiring signed commits
What is a CI trigger in Azure Pipelines?
A configuration that causes a pipeline to run whenever changes are pushed to specific branches
What is a PR trigger in Azure Pipelines?
A configuration that causes a pipeline to run when a pull request is created or updated
What is a scheduled trigger in Azure Pipelines?
A configuration that causes a pipeline to run at specified times
What is a pipeline trigger in Azure Pipelines?
A configuration that causes a pipeline to run when another pipeline completes
What is a workflow in GitHub Actions?
A configurable automated process defined in YAML that runs one or more jobs
What is a job in GitHub Actions?
A set of steps that execute on the same runner
What is an action in GitHub Actions?
A custom application that performs a complex but frequently repeated task
What is a step in GitHub Actions?
An individual task that can run commands or actions
What are artifacts in Azure Pipelines?
Files or packages produced by a build or used by a release
How can artifacts be shared between jobs in a pipeline?
By publishing them from one job and downloading them in another
What is a service connection in Azure DevOps?
A connection to an external service or endpoint used by pipelines
What is an environment in Azure Pipelines?
A collection of resources that can be targeted by deployments
What is continuous integration in the context of pipelines?
The practice of automatically building and testing code changes when they are committed
What is continuous delivery in the context of pipelines?
The practice of automatically deploying code changes to staging environments after passing tests
What is continuous deployment in the context of pipelines?
The practice of automatically deploying code changes to production after passing tests
What is a build definition in Azure DevOps?
A specification for a build process in classic pipelines
What is a release definition in Azure DevOps?
A specification for a release process in classic pipelines
What is a pipeline template in Azure DevOps?
A reusable pipeline definition that can be shared across teams or projects
What is a pipeline parameter?
A value that can be passed to a pipeline when it is triggered
What are runtime parameters in Azure Pipelines?
Parameters whose values are provided when the pipeline is run
What are template parameters in Azure Pipelines?
Parameters that are defined in a template and provided when the template is used
What is a deployment job in Azure Pipelines?
A job that deploys artifacts to an environment
What is a container job in Azure Pipelines?
A job that runs inside a container
What is a deployment target in Azure DevOps?
A machine or service where applications are deployed
What is a deployment strategy in Azure Pipelines?
A specification for how a deployment should be performed
What is a stage in Azure Pipelines?
A logical division in a pipeline that groups related jobs
What is a gates-enabled pipeline in Azure DevOps?
A pipeline that uses pre- or post-deployment gates to control deployments
What is a release trigger in Azure DevOps?
A condition that causes a release to be created
What is a manual intervention task in Azure Pipelines?
A task that pauses a pipeline and waits for human approval
What is a deployment group job in Azure Pipelines?
A job that runs on machines in a deployment group
What is a service hook in Azure DevOps?
An integration point that can trigger external services when events occur
What is a task in Azure Pipelines?
A unit of work in a pipeline
What is a pool in Azure Pipelines?
A collection of agents that can run jobs
What is a pipeline cache in Azure DevOps?
A way to reuse files between runs to speed up builds
What is a pipeline artifact in Azure DevOps?
A file or set of files published from a pipeline for use in subsequent stages or other pipelines
What is a pipeline decorator in Azure DevOps?
A way to automatically inject tasks into all pipelines in an organization
What is a release environment in Azure DevOps?
A logical grouping of release targets where application components are deployed
What is a pre-deployment approval in Azure DevOps?
An approval required before a deployment to an environment can start
What is a post-deployment approval in Azure DevOps?
An approval required after a deployment to an environment completes
What is a build policy in Azure DevOps?
A policy that requires a successful build before changes can be merged
What is a release pipeline in Azure DevOps?
A definition of the release process for an application
What is a deployment phase in Azure DevOps?
A logical grouping of deployment tasks that are run together
What is a pipeline variable group?
A set of related variables that can be used across multiple pipelines
What is a secret variable in Azure Pipelines?
A variable that stores sensitive information and is encrypted
What is a variable substitution in Azure Pipelines?
The process of replacing tokens in files with variable values
What is a variable expression in Azure Pipelines?
A syntax for referencing variables and functions in pipeline definitions
What is a template expression in Azure Pipelines?
A syntax for evaluating expressions in YAML templates
What is a pipeline resource in Azure Pipelines?
An external resource that can be consumed in a pipeline
What is a pipeline trigger in GitHub Actions?
An event that causes a workflow to run
What is a matrix strategy in Azure Pipelines?
A way to run the same job multiple times with different input values
What is a deployment pattern?
A reusable approach to deploying applications that addresses common challenges
What is a blue-green deployment pattern?
A pattern where two identical environments exist and traffic is switched between them
What is a canary deployment pattern?
A pattern where a new version is deployed to a small subset of users before wider deployment
What is a rolling deployment pattern?
A pattern where instances are updated one at a time or in small batches
What is a feature toggle pattern?
A pattern where features can be enabled or disabled without redeploying
What is an environment-based deployment pattern?
A pattern where code progresses through a series of environments from development to production
What is a hybrid deployment pattern?
A pattern that combines multiple deployment approaches for different components
What is a deployment slot in Azure App Service?
A separate instance of an app that can be swapped with the production slot
What is a slot swap in Azure App Service?
The process of exchanging content and configuration between deployment slots
What is a phased deployment?
A deployment that occurs in stages
What is a canary release?
A technique for reducing risk by slowly rolling out changes to a small subset of users before a full deployment
What is a dark launch?
A technique where new features are deployed to production but not visible to users until enabled
What is a feature flag system?
A system that allows features to be toggled on or off without redeploying code
What is progressive delivery?
An approach to deploying applications that involves gradually rolling out changes to reduce risk
What is a rollback plan in deployment strategy?
A predefined approach to reverting to a previous version if problems are detected
What is a circuit breaker pattern in deployments?
A pattern that monitors for failures and prevents operation when a failure rate threshold is reached
What is a zero-downtime deployment?
A deployment strategy that ensures services remain available throughout the deployment process
What is a deployment orchestrator?
A system that coordinates complex deployments across multiple services or environments
What is an immutable infrastructure deployment?
A strategy where infrastructure is never modified after deployment
What is Phoenix deployment?
A practice of regularly rebuilding servers from scratch to ensure consistency and reduce configuration drift
What is a deployment manifest?
A file that describes how an application should be deployed
What is a deployment pipeline?
A sequence of stages through which code changes flow from development to production
What is GitOps?
A way of implementing Continuous Deployment where Git is the single source of truth for infrastructure and application configuration
What is ArgoCD?
A GitOps continuous delivery tool for Kubernetes
What is Flux CD?
A GitOps operator for Kubernetes that ensures clusters are configured according to git repositories
What is Jenkins?
An open-source automation server commonly used for building
What is Octopus Deploy?
A deployment automation server designed for .NET applications
What is Terraform?
An open-source infrastructure as code tool for provisioning and managing cloud infrastructure
What is Chef?
A configuration management tool that uses a pure Ruby DSL for writing system configuration “recipes”
What is Puppet?
A configuration management tool that uses a declarative language to define system configuration
What is Ansible?
A configuration management and application deployment tool that uses YAML syntax
What is Azure Policy?
A service in Azure that evaluates resources against defined rules
What is Azure Bicep?
A domain-specific language for deploying Azure resources declaratively
What is Bicep registry?
A repository for storing and sharing Bicep modules
What is a module in Bicep?
A reusable unit of Bicep code that can be shared and consumed in other Bicep files
What is parameter file in ARM templates?
A file that provides parameter values for an ARM template
What is nested template in ARM?
A template that is called from another template
What is linked template in ARM?
A template that is referenced from another template but stored separately
What is template spec in Azure?
A type of resource that enables storing ARM templates in Azure for reuse
What is resource locks in Azure?
A setting that prevents resources from being deleted or modified
What is tagging in Azure resource deployment?
A way to add metadata to resources for organization and management
What is Azure RBAC in the context of IaC?
Role-Based Access Control that defines who can create
What is a deployment history in Azure?
A record of all deployments performed on a resource group
What is an Azure Deployment Stack?
A way to deploy and manage related resources as a single entity
What is ARM template What-If operation?
A preview of the changes that would be made by deploying an ARM template
What is Azure Deployment Manager?
A service that enables staged rollout of ARM template deployments
What is Azure Policy as Code?
The practice of defining Azure policies in source-controlled code
What is Kubernetes manifest?
A YAML file that describes desired state for Kubernetes resources
What is Helm in Kubernetes?
A package manager for Kubernetes that helps install and manage applications
What is Kustomize?
A tool for customizing Kubernetes resource configurations
What is a Kubernetes Operator?
A method of packaging
What is a Kubernetes Job?
A controller that creates pods and ensures they complete successfully
What is a Kubernetes CronJob?
A job that runs on a time-based schedule
What is a Kubernetes ConfigMap?
A Kubernetes resource for storing configuration data as key-value pairs
What is a Kubernetes Secret?
A Kubernetes resource for storing sensitive information
What is a Kubernetes Service?
A resource that defines a logical set of pods and a policy to access them
What is a Kubernetes Ingress?
A resource that manages external access to services in a cluster
What is a Kubernetes Namespace?
A virtual cluster within a physical cluster
What is a Kubernetes DaemonSet?
A controller that ensures all nodes run a copy of a pod
What is a Kubernetes StatefulSet?
A controller that manages stateful applications
What is a Kubernetes ReplicaSet?
A controller that ensures a specified number of pod replicas are running
What is a Kubernetes Deployment?
A controller that provides declarative updates for pods and replica sets
What is a Helm Chart?
A package of pre-configured Kubernetes resources
What is a Helm Repository?
A storage location for Helm charts
What is Azure Key Vault integration in pipelines?
The use of Azure Key Vault to securely store and retrieve secrets during pipeline execution
What is a deployment approval?
A manual intervention required before a deployment can proceed
What is a branch filter in pipeline triggers?
A specification of which branches should trigger a pipeline
What is a path filter in pipeline triggers?
A specification of which file paths should trigger a pipeline
What is a conditional task in pipelines?
A task that only runs when specific conditions are met
What is an on-demand pipeline?
A pipeline that must be manually triggered rather than running automatically
What is a manual validation task?
A task that pauses the pipeline until someone manually confirms it should continue
What is an agentless job in Azure Pipelines?
A job that runs on the Azure DevOps service rather than requiring an agent
What is a container registry in deployment pipelines?
A repository for storing and distributing container images
What is a package feed in Azure Artifacts?
A repository for storing and distributing packages
What is a universal package in Azure Artifacts?
A package type that can store any file type and is not tied to a specific package format
What is a feed view in Azure Artifacts?
A way to filter which package versions are visible to consumers
What is a package promotion in Azure Artifacts?
The process of moving a package from one view to another
What is a package retention policy?
A policy that determines how long packages are kept before being deleted
What is a private agent in Azure DevOps?
A self-hosted build agent running on hardware you provide
What is a scale set agent in Azure DevOps?
A build agent that runs on Azure virtual machine scale sets
What is a container job in GitHub Actions?
A job that runs inside a Docker container
What is a service container in GitHub Actions?
A Docker container that provides a service needed by the workflow
What is a job output in GitHub Actions?
A set of values that can be passed from one job to another
What is an environment variable in pipelines?
A variable that sets the environment for processes running in the pipeline
What is a secret in GitHub Actions?
A encrypted variable for storing sensitive information
What is a self-hosted runner group in GitHub?
A way to organize self-hosted runners into groups with specific access controls
What is a runner label in GitHub Actions?
A way to target workflows to specific runners
What is a deployment environment in GitHub?
A named environment that receives deployments from GitHub Actions
What is a protected environment in GitHub?
An environment that has protection rules like required reviewers
What is a deployment protection rule in GitHub?
A rule that must be satisfied before a deployment to an environment can proceed
What is a deployment branch policy in GitHub?
A policy that restricts which branches can deploy to an environment
What is a required repository in a GitHub environment?
A repository that must be present for a deployment to succeed
What is a review environments in DevOps?
An environment created for reviewing changes before they go to production
What is a validation testing in deployment?
Testing performed to validate that a deployment was successful
What is the role of audit logging in a security plan?
To track who did what and when for security investigations and compliance
What is a custom dashboard in Azure Portal?
A personalized view of Azure resources and metrics for monitoring
What is a workbook in Azure Monitor?
An interactive document that combines text
What is an action group in Azure Monitor?
A collection of notification preferences that can be used by alerts
What is diagnostic setting in Azure?
Configuration that defines where platform logs and metrics should be sent
What is a Log Analytics workspace?
A unique environment for Azure Monitor log data with its own data repository and configuration
What is the Azure Monitor agent?
A new agent that collects monitoring data from guest operating systems
What is a data collection rule in Azure Monitor?
A resource that defines what data to collect and where to send it
What is a metric in Azure Monitor?
A numerical value collected at regular intervals representing some aspect of a system
What is a log in Azure Monitor?
A record of activity or detailed information about a resource
What is the difference between metrics and logs in monitoring?
Metrics are numerical values representing system states
What is a resource health alert?
An alert that triggers when the health state of an Azure resource changes
What is an availability test in Application Insights?
A test that regularly checks if an application endpoint is responding
What is a composite alert in Azure Monitor?
An alert that combines multiple conditions with logical operators
What is a near real-time metric alert?
An alert that evaluates metrics at a high frequency
What is a service health alert?
An alert that notifies when Azure service health issues might affect your resources
What is a private link scope in Azure Monitor?
A resource that allows private access to Azure Monitor resources via private endpoints
What is Azure Monitor for containers?
Monitoring solution for container workloads deployed to managed Kubernetes clusters
What is Azure Monitor for VMs?
Monitoring solution that provides detailed performance analysis for virtual machines
What is a query pack in Log Analytics?
A collection of saved queries that can be shared and managed as a group
What is a query scope in Log Analytics?
The set of resources that a query runs against
What is a failure anomaly in Application Insights?
An unusual increase in failed requests detected by smart detection
What is a performance anomaly in Application Insights?
An unusual slowdown in response time detected by smart detection
What is a trace span in distributed tracing?
A single operation or unit of work in a distributed trace
What is correlation ID in distributed tracing?
A unique identifier that follows a request through different components
What is sampling in Application Insights?
A technique to reduce the amount of telemetry data while maintaining statistical accuracy
What is an exception telemetry in Application Insights?
Data about exceptions that occurred during application execution
What is request telemetry in Application Insights?
Data about HTTP requests processed by an application
What is dependency telemetry in Application Insights?
Data about calls made by an application to external components
What is custom telemetry in Application Insights?
User-defined telemetry that tracks specific application events or metrics
What is a Live Metrics Stream in Application Insights?
A feature that shows real-time metrics about an application
What is an Application Map in Application Insights?
A visual representation of the components and dependencies in an application
What is profiling in Application Insights?
Capturing detailed execution timing data to identify performance bottlenecks
What is a Snapshot Debugger in Application Insights?
A feature that captures debug snapshots when exceptions occur in production
What is a usage analysis in Application Insights?
Analysis of how users interact with an application
What is a funnel analysis in Application Insights?
Analysis of how users progress through a multi-step process in an application
What is a cohort analysis in Application Insights?
Analysis of how groups of users behave over time
What is a user flow analysis in Application Insights?
Analysis of the paths users take through an application
What is a retention analysis in Application Insights?
Analysis of how many users return to an application over time
What is a user timeline in Application Insights?
A chronological view of a specific user’s interactions with an application
What is an impact analysis in Application Insights?
Analysis of how issues affect users and business metrics
What is a workspace-based Application Insights?
Application Insights that stores data in a Log Analytics workspace
What is classic Application Insights?
Application Insights that stores data in its own storage
What is a resource-centric monitoring?
Monitoring focused on individual resources and their performance
What is a service-centric monitoring?
Monitoring focused on services and their dependencies
What is a user-centric monitoring?
Monitoring focused on user experience and behavior
What is a business-centric monitoring?
Monitoring focused on business metrics and outcomes
What is a synthetic transaction monitoring?
Monitoring that simulates user activity to test availability and performance
What is real user monitoring?
Monitoring actual user interactions with an application
What is passive monitoring?
Monitoring that observes system behavior without interacting with it
What is active monitoring?
Monitoring that interacts with a system to verify functionality
What is proactive monitoring?
Monitoring aimed at detecting issues before they affect users
What is reactive monitoring?
Monitoring aimed at detecting issues after they occur
What is continuous monitoring?
Constant observation of systems to detect and address issues
What is periodic monitoring?
Regular but intermittent checks of system health
What is a monitoring dashboard?
A visual display of key metrics and status indicators
What is a monitoring alert?
A notification triggered when monitored conditions meet defined criteria
What is a monitoring baseline?
A standard set of metrics and thresholds for normal operation
What is anomaly detection in monitoring?
Identification of patterns that deviate from normal behavior
What is root cause analysis in monitoring?
Investigation to identify the fundamental cause of an issue
What is a monitoring agent?
Software that collects data from systems and sends it to monitoring services
What is agentless monitoring?
Monitoring that collects data without installing software on the monitored system
What is log ingestion?
The process of collecting and storing log data
What is log aggregation?
Combining log data from multiple sources for analysis
What is log correlation?
Linking related log entries across different systems
What is log parsing?
Extracting structured data from unstructured log entries
What is log retention?
How long log data is kept before being deleted
What is log archiving?
Moving older log data to cheaper storage for long-term retention
What is a monitoring scope?
The boundary of what is being monitored
What is end-to-end monitoring?
Monitoring that covers all components of a system from user to back-end
What is the difference between monitoring and observability?
Monitoring is about tracking known issues
What is a golden signal in monitoring?
Key metrics that provide the most insight into system health
What are the four golden signals in monitoring?
Latency
What is a service level indicator (SLI)?
A quantitative measure of service level
What is a service level objective (SLO)?
A target value or range for an SLI
What is a service level agreement (SLA)?
A contract that specifies SLOs and consequences for not meeting them
What is an error budget in monitoring?
Allowed amount of downtime or errors before action is required
What is the role of vulnerability scanning in a security plan?
To identify security weaknesses before they can be exploited
What is the role of version scanning in open-source components?
To identify outdated dependencies that may contain security vulnerabilities
What are the security implications of using service principals?
They require careful management of credentials and appropriate scope limitation
What security measures should be implemented for self-hosted agents?
Network isolation
What is the principle of least privilege in security context?
Granting only the minimum permissions necessary to perform required functions
How can secrets rotation be automated in a DevOps environment?
Using tools like Azure Key Vault’s automatic rotation or scheduled pipeline jobs
What is the purpose of separating duties in DevOps security?
To prevent a single person from having excessive control and to reduce risk of accidental or malicious actions
How can compliance requirements be enforced in a DevOps pipeline?
Through automated scanning
