Which combination of actions should the DevOps engineer take to fulfill this request?
(Choose two.)
Insert a manual approval action between the test actions and deployment actions of the pipeline.
Modify the buildspec.yml file for the compilation stage to require manual approval before completion.
Update the CodeDeploy deployment groups so that they require manual approval to proceed.
Update the pipeline to directly call the REST API for the penetration testing tool.
Update the pipeline to invoke a Lambda function that calls the REST API for the penetration testing tool.
Explanations:
Adding a manual approval action allows the QA team to review and inspect the build artifact before it proceeds to production, satisfying their request for inspection and testing.
Modifying thebuildspec.ymlfor manual approval would not fulfill QA requirements because this step occurs before the staging deployment and is not designed for QA intervention.
Requiring manual approval in CodeDeploy deployment groups is ineffective, as CodeDeploy’s approval is not designed to allow QA testing before production deployment.
Directly calling the REST API from the pipeline could trigger tests but lacks the necessary control and manual approval to ensure QA review before production deployment.
Invoking a Lambda function to call the REST API allows automation to trigger QA’s penetration testing tool in the pipeline, fulfilling QA’s requirement without altering existing steps.