The included GOOGLE checks are listed below. For more information about each check, see the link provided.
Code | Summary |
---|---|
GCP001 | Unencrypted compute disk. |
GCP003 | An inbound firewall rule allows traffic from /0 . |
GCP004 | An outbound firewall rule allows traffic to /0 . |
GCP005 | Legacy ABAC permissions are enabled. |
GCP006 | Node metadata value disables metadata concealment. |
GCP007 | Legacy metadata endpoints enabled. |
GCP008 | Legacy client authentication methods utilized. |
GCP009 | Pod security policy enforcement not defined. |
GCP010 | Shielded GKE nodes not enabled. |
GCP011 | IAM granted directly to user. |
GCP012 | Checks for service account defined for GKE nodes |