Multiple Choice Questions – Docker

vibssingh

CI/CD – Advance Level – Multiple Choice Questions and Answers – MCQ1

Last Updated On

HOME

Welcome to the Advance Level of CI/CD Quiz!

This blog post features 20 multiple-choice questions that explore advance concepts of CI/CD.

1. Which pattern best isolates pipeline failures caused by a single team’s changes while allowing other teams to continue deploying?

a) Trunk-based development only
b) Monorepo with centralized pipeline
c) Per-repo pipelines with dependency gating
d) Global pipeline that serially builds all projects

Answer 1

c) Per-repo pipelines with dependency gating

Per-repo pipelines with dependency gating allow individual teams to run and fail their own pipelines; dependency gating prevents downstream breakage while other teams remain unaffected. Monorepo or centralized pipelines can create cross-team coupling and large blast radius.

2. What is blue-green deployment?

a) Using colorful terminals
b) Running two production environments (blue & green) and switching traffic from old to new to enable quick rollback
c) Deploying only on weekends
d) Merging branches manually

Answer 2

b) Running two production environments (blue & green) and switching traffic from old to new to enable quick rollback

Blue-green allows near-instant rollback by switching back to the old environment if issues arise.

3. What is pipeline orchestration?

a) Writing scripts
b) Coordinating multiple pipeline stages/jobs
c) Monitoring servers
d) Code review

Answer 3

b) Coordinating multiple pipeline stages/jobs

Pipeline orchestration is about managing how different parts of a pipeline work together.

4. What does “immutability” of deployment artifacts mean?

a) Artifacts can be changed after deployment
b) Artifacts are versioned and never altered; updates use new versions
c) Artifacts are not stored
d) Artifacts are randomly modified

Answer 4

b) Artifacts are versioned and never altered; updates use new versions

Immutable artifacts improve reproducibility and simplify rollbacks and auditing.

5. What is a monorepo challenge in CI/CD?

a) Too many repos
b) Slow pipelines due to shared code
c) No version control
d) No tests

Answer 5

b) Slow pipelines due to shared code.

In a monorepo (a single repository containing many projects or services), all code lives together. A small change in one part of the repo can trigger builds/tests across many projects

6. What role do linters and static analysis play in CI?

a) They are unrelated to CI
b) They automatically check code quality and catch common issues before runtime
c) They replace unit tests
d) They slow down everything with no benefit

Answer 6

b) They automatically check code quality and catch common issues before runtime

Linters/static analysis help enforce standards and catch bugs early in the CI pipeline.

7. Which CI/CD metric best indicates how quickly a team can deliver changes to production?

a) Mean time to detect (MTTd)
b) Mean time to recovery (MTTR)
c) Lead time for changes
d) Change failure rate

Answer 7

c) Lead time for changes

Lead time for changes measures the time from code committed to code successfully running in production, indicating delivery speed.

8. In a GitOps-based CD approach, what is the single source of truth for the desired system state?

a) The running cluster state
b) A centralized database of deployments
c) The Git repository containing manifests/configs
d) CI server build logs

Answer 8

c) The Git repository containing manifests/configs

GitOps uses Git as the source of truth for declarative system state; the cluster reconciles to match Git.

9. What is the main security risk of storing secrets directly in pipeline YAML files in a CI system?

a) They get compressed and become unreadable
b) Secrets can leak via logs, code reviews, or repository access
c) CI will encrypt them by default
d) No risk if the pipeline is private

Answer 9

b) Secrets can leak via logs, code reviews, or repository access

Storing secrets in YAML can expose them through logs, VCS history, or access control lapses. Use secret managers or encrypted variable stores.

10. When designing pipeline agents (runners) at scale, which strategy improves security and reliability?

a) Use a single shared privileged runner for all jobs
b) Use ephemeral, least-privilege runners that boot per job and run in isolated environments
c) Use permanent runners with root access to improve speed
d) Allow developers to run arbitrary system services on runners

Answer 10

b) Use ephemeral, least-privilege runners that boot per job and run in isolated environments

Ephemeral, least-privilege runners reduce attack surface and avoid state leakage between jobs; isolation improves reliability and reproducibility.

11. In pipelines, why are “shift-left” security practices recommended?

Choose one option

a) They defer security to production
b) They integrate security checks earlier, catching issues sooner and reducing cost of fixes
c) They replace code reviews
d) They focus only on runtime security

Answer 11

b) They integrate security checks earlier, catching issues sooner and reducing cost of fixes

Shift-left integrates security (SAST, dependency scanning) early in the development lifecycle to catch vulnerabilities earlier when remediation is cheaper.

12.  Which practice helps prevent configuration drift between dev/staging/prod?

a) Manual configuration changes via SSH in each environment
b) Store configuration declaratively (in Iac) and apply via automated pipelines with drift detection
c) Only document config differences in a wiki
d) Use different tools in each environment for flexibility

Answer 12

b) Store configuration declaratively (in Iac) and apply via automated pipelines with drift detection

Declarative configuration plus automated application and drift detection ensures environments remain consistent.

13. Which rollout method is best when the new version requires a schema migration that is backwards-incompatible?

a) Immediate switch to new version across all nodes
b) Use a multi-step deployment with backward-compatible migration, feature flags, and careful DB migration plan (expand-then-contract)
c) Skip DB migration and let the app handle it
d) Disable monitoring during migration

Answer 13

b) Use a multi-step deployment with backward-compatible migration, feature flags, and careful DB migration plan (expand-then-contract).

Expand-then-contract migrations and feature flags avoid downtime and ensure both old and new code can function, enabling safe transitions.

14. Which is the best way to manage secret injection into containerized workloads at runtime?

a) Bake secrets into container images
b) Integrate runtime secret providers (e.g., secrets mounted via a secure secrets manager with short-lived credentials)
c) Put secrets in plain environment variables in CI logs
d) Commit secrets to the repo in an encrypted file without automated retrieval

Answer 14

b) Integrate runtime secret providers (e.g., secrets mounted via a secure secrets manager with short-lived credentials)

Runtime retrieval via a secrets manager with short-lived credentials minimizes exposure and avoids baking secrets into images or repos.

15. Which metric best measures the reliability of the release process?

a) Number of commits per day
b) Change failure rate (percentage of deployments causing production incidents)
c) Average build time only
d) Code churn

Answer 15

b) Change failure rate (percentage of deployments causing production incidents)

Change failure rate indicates how often deployments lead to failures requiring remediation, reflecting release reliability.

16. What is the best pattern to ensure database schema migrations are rolled forward safely across multiple instances?

a) Run migration on a single instance and rely on replication only
b) Use rolling migrations that coordinate schema changes with backward-compatible code, and apply migrations in a way that supports both versions (expand-then-contract)
c) Apply migrations only when traffic is zero
d) Make destructive changes directly in production without testing

Answer 16

b) Use rolling migrations that coordinate schema changes with backward-compatible code, and apply migrations in a way that supports both versions (expand-then-contract)

Coordinated rolling migrations with backward compatibility reduce downtime and service disruption.

17.  Which of the following is true about feature flags in CI/CD?

a) They always replace the need for testing
b) They can decouple deployment from release and allow targeted rollouts and safe rollbacks when used with proper lifecycle management
c) They remove the need for version control
d) They are only useful for UI changes

Answer 17

b) They can decouple deployment from release and allow targeted rollouts and safe rollbacks when used with proper lifecycle management

Feature flags let teams deploy code without exposing features to all users, enabling controlled experiments and quick rollbacks.

18. In multi-cloud CD deployments, which capability ensures consistent delivery across providers?

a) Using distinct CI/CD tools per cloud without abstraction
b) Declarative IaC that targets cloud-agnostic layers or provider-specific modules with a consistent pipeline orchestrator and artifact promotion model
c) Manually executing cloud CLIs per provider
d) Only deploying to one cloud and failing the others

Answer 18

b) Declarative IaC that targets cloud-agnostic layers or provider-specific modules with a consistent pipeline orchestrator and artifact promotion model

 19.  What is a Docker Registry?

a) A network router
b) A local storage system
c) A virtual machine host
d) A repository for storing and sharing Docker images

Answer 19

d) A repository for storing and sharing Docker images

 A Docker Registry is a storage system where you can store, share, and retrieve Docker images. Docker Hub is a popular example.

20. What is the primary purpose of the Docker Engine?

Choose one option

a) To provide a graphical visualization of containers
b) To build and run containers
c) To manage databases inside containers
d) To interface with Kubernetes

Answer 20

b) To build and run containers

We would love to hear from you! Please leave your comments and share your scores in the section below

vibssingh

Docker – Advance Level – Multiple Choice Questions and Answers – MCQ1

Last Updated On

HOME

Welcome to the Docker Quiz! This blog post features 25 multiple-choice questions that explore advance concepts of Docker.

1. How do Docker containers achieve process isolation on the host system?

a) Virtual Machines
b) Hypervisors
c) Namespaces and cgroups
d) Dedicated resources

Answer 1

c) Namespaces and cgroups

Namespaces are a feature of the Linux kernel that provide isolation for resources such as process IDs, network, user IDs, and file systems.

Docker uses cgroups to allocate resources efficiently among containers running on the same host, preventing one container from consuming excessive resources and impacting others.

2. What is the purpose of a Dockerfile?

a) To create virtual machines
b) To optimize application code
c) To store environment variables
d) To define and build Docker images

Answer 2

d) To define and build Docker images

A Dockerfile contains a set of instructions to define and build a Docker image, specifying dependencies, configuration, and application code.

3. What does the Dockerfile contain?

a) Compiled source code
b) Docker images
c) Binary data
d) Instructions for building a Docker image

Answer 3

 Instructions for building a Docker image

A Dockerfile is a text file that contains a set of instructions used to automatically build a Docker image. These instructions define everything needed to assemble the image, such as: Base Image,  Package Installation, Execution Commands, File Operations

4. How many types of volumes are there in Docker?

a) 3
b) 2
c) 4
d) 5

Answer 4

b) 2

There are two types of volumes in docker – Named volumes and Bind Mounts

5. Which of the following volume type allows you to share a directory from the host’s filesystem into the container?

a) Named volumes
b) Bind Mounts

Answer 5

b) Bind Mounts

The bind mount volume type allows you to share a directory from the host’s filesystem into the container.

6. In which of the following volume type docker chooses the host location?

a) Named volumes
b) Bind Mounts

Answer 6

a) Named volumes

In the Named volume type docker chooses the host location, whereas you decide the host location in the bind mount type of volume.

7. Which command is used to remove unused Docker objects, such as containers and images?

a) docker prune
b) docker clean
c) docker system prune
d) docker remove

Answer 7

c) docker system prune

8.  To list all the networks linked with Docker on the host, the ____ command is used.

a) docker network list
b) docker network ls
c) docker ls
d) network ls

Answer 8

b) docker network ls

To list all the networks linked with Docker on the host, the docker network ls command is used.

9. What is port binding in Docker?

a) Binding environment variables
b) Assigning internal ports to external ones
c) Binding memory resources
d) Binding IP addresses to containers

Answer 9


b) Assigning internal ports to external ones

Port binding in Docker refers to the process of linking internal ports within a Docker container to external ports on the host system. This allows applications running inside the container to communicate with external networks or systems

10. Which of the following is a tool that was built to assist define and distribute multi-container applications?

a) Docker setup
b) Docker compose
c) Docker notify

Answer 10

b) Docker compose

Docker Compose is a tool that was built to assist define and distribute multi-container applications.

11. Which of the following command is used to display the statistics of a running container?

Choose one option

a) Docker statistics
b) Stats
c) Docker statics
d) Docker stats

Answer 11

d) Docker stats

The stats command is used to display the statistics of a running container.

12.  Which command is used to view the logs of a running container?

Choose one option

a) docker view [container ID]
b) docker logs [container ID]
c) docker inspect [container ID]
d) docker output [container ID]

Answer 12

 b) docker logs [container ID]

13. What is the default Docker network mode?

Choose one option

a) host
b) none
c) bridge
d) overlay

Answer 13

c) bridge

14. After making changes to a running container, how can you save those changes into an image?

Choose one option

a) docker save
b) docker commit
c) docker store
d) docker snapshot

Answer 14

b) docker commit

15. What does the `ENTRYPOINT` directive do in a Dockerfile?

a) Sets an environment variable
b) Specifies the command that will run on container start
c) Exposes a port
d) Confirms the image build

Answer 15

b) Specifies the command that will run on container start

16. What is the function of the `Dockerfile` directive `COPY`?

Choose one option

a) Copies files and directories from localhost to the image
b) Moves data between volumes
c) Copies data between containers
d) Duplicates Docker images

Answer 16

 a) Copies files and directories from localhost to the image

17.  What is the syntax used to specify base image in a Dockerfile?

Choose one option

a) FROM [image name]
b) BASE [image name]
c) SOURCE [image name]
d) INITIAL [image name]

Answer 17

a) FROM [image name]

18. What is the primary function of the .dockerignore file?

Choose one option

a) To list all images to be pulled from the Docker Hub
b) To specify commands to run inside a container
c) To prevent certain files and directories from being copied into an image
d) To provide metadata about a Docker image

Answer 18

c) To prevent certain files and directories from being copied into an image

The .dockerignore file allows users to exclude files and directories from being copied to the image during the build process, much like .gitignore does for git repositories.

 19.  In a docker-compose.yml file, what is the function of the depends_on key?

a) Specifies the base images for services
b) Specifies the build context for services
c) Specifies the order in which services are started
d) Specifies the network links between services

Answer 19

c) Specifies the order in which services are started

 In a docker-compose.yml file, the depends_on key indicates the order in which services should be started. A service with a depends_on key will not start until the services it depends on have been started.

20. What is the primary purpose of Docker Swarm?

a) Image version management
b) Multi-host container orchestration
c) Container storage optimization
d) Automated container build pipeline

Answer 20

b) Multi-host container orchestration

Docker Swarm is a native clustering and orchestration tool for Docker. It allows you to create and manage a swarm of Docker nodes and orchestrate services across multiple hosts.

21. What command initializes a node as a Docker Swarm manager?

a) docker swarm init
b) docker swarm start
c) docker swarm create
d) docker swarm manager

Answer 21

a) docker swarm init

The docker swarm init command initializes the current node as a Docker Swarm manager, which manages the infrastructure of a swarm.

22. How can you inspect the details of a Docker network?

a) docker network view NETWORK_NAME
b) docker network show NETWORK_NAME
c) docker network detail NETWORK_NAME
d) docker network inspect NETWORK_NAME

Answer 22

d) docker network inspect NETWORK_NAME

The docker network inspect command is used to display detailed information about a network.

23. Which command creates a Docker volume?

a) docker storage create
b) docker add volume
c) docker volume create
d) docker create

Answer 23

c) docker volume create

 The docker volume create command creates a new Docker volume for persistent storage.

24. Why is Docker commonly integrated with CI/CD pipelines?

a) Consistent environments across testing and production
b) Easier dependency management
c) Faster build and deployment times
d) All of the mentioned

Answer 24

 d) All of the mentioned

 Docker integration with CI/CD ensures faster deployments, dependency management, and environment consistency.

25. Why is Kubernetes often paired with Docker?

a) For debugging local machines
b) For virtualizing operating systems
c) For orchestrating large-scale container deployments
d) For building individual containers

Answer 25

c) For orchestrating large-scale container deployments

Kubernetes orchestrates, deploys, and manages containers at scale, complementing Docker’s container creation capabilities.

We would love to hear from you! Please leave your comments and share your scores in the section below

vibssingh

Docker – Basic Level – Multiple Choice Questions and Answers – MCQ1

Last Updated On

HOME

Welcome to the Docker Quiz! This blog post features 25 multiple-choice questions that explore basic concepts of Docker.

1. What is Docker?

a) A Hypervisor
b) An Operating System
c) A Virtual Machine
d) A Containerization platform

Answer 1

d) A Containerization platform

Docker is a containerization platform that allows developers to package and distribute applications and their dependencies in isolated containers.

2. Which of the following is the core component of Docker?

a) Docker CLI
b) Docker Engine
c) Docker Server
d) Docker Hypervisor

Answer 2

b) Docker Engine

Docker Engine is the core component of Docker. It is responsible for creating, managing, and running Docker containers.

3. Which command is used to check the version of Docker?

a) docker details
b) docker info
c) docker version
d) docker –version

Answer 3

d) docker –version

4. What is a Docker Container?

a) A network service
b) A lightweight executable package
c) An Operating System kernel
d) A Virtual Machine

Answer 4

b) A lightweight executable package

A Docker container is a lightweight, standalone executable package containing everything needed to run a piece of software, including code, runtime, libraries, and system tools.

5. Which command creates and starts a new container?

a) docker create
b) docker start
c) docker run
d) docker build

Answer 5

c) docker run

The command docker run creates and starts a new container from a specified Docker image. It combines the functions of the docker create and docker start commands into a single step, allowing the user to instantiate and execute a container immediately.

6. Which of the following command you will use to list your containers?

a) docker list
b) docker show
c) docker ps
d) docker display

Answer 6

c) docker ps

The docker ps command lists all running Docker containers, along with various details like container ID, image name, creation time, and so on.

7. Which of the following statement is correct?

a) To remove a container, you first need to stop it
b) You can directly remove a container, without stopping it.

Answer 7

a) To remove a container, you first need to stop it

To remove a container, you first need to stop it. Once it has stopped, you can remove it.

8. How do you stop a running Docker container?

a) docker pause
b) docker terminate
c) docker end
d) docker stop

Answer 8

d) docker stop

The docker stop command stops a running container, gracefully terminating its processes.

9. What is a Docker Image?

a) A running container
b) A snapshot of an application and its dependencies
c) A configuration file
d) A virtual hard drive

Answer 9

b) A snapshot of an application and its dependencies 

A Docker Image contains all the necessary components to run an application, including code, libraries, dependencies, and runtime.

10. Which command is used to create a new Docker image?

a) docker build
b) docker pull
c) docker run
d) docker commit

Answer 10

a) docker build

The docker build command is used to build a new image from a Dockerfile and a “context”. The context is the set of files in a specified directory or URLs that the image is built from.

11. Which command pulls an image from Docker Hub?

Choose one option

a) docker get
b) docker fetch
c) docker pull
d) docker download

Answer 11

c) docker pull

The docker pull command is used to pull or download a Docker image from a registry like Docker Hub.

12.  How can you remove a Docker image?

Choose one option

a) docker remove
b) docker delete
c) docker rm
d) docker rmi

Answer 12

d) docker rmi

The docker rmi command is used to remove a Docker image from the system.

13. How can you run a command inside an existing Docker container?

Choose one option

a) docker exec
b) docker attach
c) docker run
d) docker enter

Answer 13

a) docker exec

The docker exec command allows you to run commands inside an existing container. For example, docker exec -it container_id /bin/bash would open a bash shell inside the container with ID container_id.

14. What is Docker Compose?

Choose one option

a) A scripting language for Docker
b) A continuous integration tool for Docker
c) A tool for defining and running multi-container Docker applications
d) A Docker CLI plugin

Answer 14

c) A tool for defining and running multi-container Docker applications

Docker Compose is a tool for defining and running multi-container Docker applications. With Compose, you define the services, networks, and volumes in a single docker-compose.yml file and then use docker-compose up to start the entire application stack.

15. What is the difference between a Docker Container and a Virtual Machine?

Choose one option

a) Containers are slower than VMs
b) VMs run on hardware, while containers do not
c) Containers share the host OS kernel, while VMs have their own kernel
d) Containers are heavier than VMs

Answer 15

c) Containers share the host OS kernel, while VMs have their own kernel

Containers share the host OS kernel, whereas VMs have their own OS kernel, making containers more lightweight and efficient.

16. Which of the following is the default registry used by Docker?

Choose one option

a) Kubernetes Hub
b) Container Store
c) Docker Hub
d) Image Hub

Answer 16

c) Docker Hub

Docker Hub is the default public registry where Docker images are stored and shared. You can pull and push images from and to Docker Hub.

17.  What are the key components of Docker architecture?

Choose one option

a) Docker Manager, Docker Processor, Docker Configurator
b) Docker Master, Docker Node, Docker Registry
c) Docker Engine, Docker CLI, Docker Daemon
d) Docker Kernel, Docker Service, Docker Network

Answer 17

c) Docker Engine, Docker CLI, Docker Daemon

18. What is the role of the Docker Daemon?

a) It stores operating system data
b) It manages containers, images, and networks
c) It interacts with the user interface
d) It only handles logs

Answer 18

b) It manages containers, images, and networks

 19.  What is a Docker Registry?

a) A network router
b) A local storage system
c) A virtual machine host
d) A repository for storing and sharing Docker images

Answer 19

d) A repository for storing and sharing Docker images

 A Docker Registry is a storage system where you can store, share, and retrieve Docker images. Docker Hub is a popular example.

20. What is the primary purpose of the Docker Engine?

Choose one option

a) To provide a graphical visualization of containers
b) To build and run containers
c) To manage databases inside containers
d) To interface with Kubernetes

Answer 20

b) To build and run containers

21. Which of the following commands logs you into Docker Hub from the CLI?

a) docker login
b) docker auth
c) docker sign-in
d) docker connect

Answer 21

a) docker login

The docker login command allows users to log into Docker Hub or any other Docker registry from the command-line interface.

22. What does the -d flag do in the docker run command?

a) Deletes the container
b) Displays detailed information
c) Detaches the container (runs in the background)
d) Downloads the latest image

Answer 22

c) Detaches the container (runs in the background)

23. How do you specify a Dockerfile other than the default “Dockerfile” during the build process?

a) Use –filename option
b) Use –source option
c) Use –file option
d) Use –dockerfile option

Answer 23

c) Use –file option

The –file or -f option allows users to specify a different Dockerfile than the default one. For example, docker build –f MyDockerfile .

24. Which CLI command shows detailed information about a container?

a) docker inspect
b) docker show
c) docker details
d) docker info

Answer 24

 a) docker inspect

 docker inspect provides detailed information about containers, including network configurations, status, and metadata.

25. Once the container has stopped, which of the following command you will use to remove a container?

a) Docker remove
b) Docker Destroy
c) Docker rm
d) Docker del

Answer 25

c) Docker rm

When the container has stopped, use the docker rm command to remove it.

We would love to hear from you! Please leave your comments and share your scores in the section below