The included GOOGLE checks are listed below. For more information about each check, see the link provided.
| Code | Summary |
|---|---|
| GCP001 | Unencrypted compute disk. |
| GCP003 | An inbound firewall rule allows traffic from /0. |
| GCP004 | An outbound firewall rule allows traffic to /0. |
| GCP005 | Legacy ABAC permissions are enabled. |
| GCP006 | Node metadata value disables metadata concealment. |
| GCP007 | Legacy metadata endpoints enabled. |
| GCP008 | Legacy client authentication methods utilized. |
| GCP009 | Pod security policy enforcement not defined. |
| GCP010 | Shielded GKE nodes not enabled. |
| GCP011 | IAM granted directly to user. |
| GCP012 | Checks for service account defined for GKE nodes |