AWS DevOps Engineer Professional DOP-C01 – Question190

A DevOps engineer has automated a web service deployment using AWS CodePipeline with the following steps:

  • An AWS CodeBuild project compiles the deployment artifact and runs unit tests.
  • An AWS CodeDeploy deployment group deploys the web service to Amazon EC2 instances in the staging environment.
  • A CodeDeploy deployment group deploys the web service to EC2 instances in the production environment.

The quality assurance (QA) team has asked for permission to inspect the build artifact before the deployment to the production environment occurs. The QA team wants to run an internal automated penetration testing tool (invoked using a REST API call) to run some manual tests.
Which combination of actions will fulfill this request? (Choose two.)

A.
Insert a manual approval action between the test and deployment actions of the pipeline.
B. Modify the buildspec.yml file for the compilation stage to require manual approval before completion.
C. Update the CodeDeploy deployment group so it requires manual approval to proceed.
D. Update the pipeline to directly trigger the REST API for the automated penetration testing tool.
E. Update the pipeline to invoke a Lambda function that triggers the REST API for the automated penetration testing tool.