Quiz: Chapter 01 (Guardrails Before Speed)
Questions
Why is bundling image and ingress changes in one push risky during incident pressure?
What does
scripts/guard-kube-context.shprotect against?Which statement is correct?
- A) Context checks are optional in
develop. - B) Context checks reduce wrong-cluster/wrong-namespace writes.
- C) Context checks slow work and add no safety value.
Why should Terraform apply be gated by a reviewed plan artifact?
What is the safest rollback order when both app and ingress were changed?
Which command is a Kubernetes deployment rollback?
- A)
kubectl -n develop rollout undo deployment/backend - B)
kubectl delete ns develop - C)
terraform destroy
Why is “one change type per PR” a guardrail?
If
guard-terraform-plan.sh applyfails due to stale/missing metadata, what is the correct next action?Which local hooks directly support this chapter’s guardrails?
Complete the principle:
- A) AI decides, human executes.
- B) AI proposes, human decides.
- C) AI auto-applies in non-production.
Answer Key (Short)
- It creates correlated failure modes and slows triage/rollback.
- Wrong context or namespace writes.
- B
- It ensures apply uses reviewed, explicit changes and prevents blind mutation.
- Separate rollback by change type, verify health after each, then reconcile via GitOps.
- A
- It reduces blast radius and keeps root-cause attribution clear.
- Regenerate and review a fresh plan, then re-run guarded apply.
pre-commit-master-check,prevent-amend-after-push, andflux-kustomize-validate.- B