turbot/gcp_compliance

Control: Compute Instances should restrict write permission on deny policy

Description

This control ensures that Compute Instance does not allow write permission on deny policies.

Usage

Run the control in your terminal:

powerpipe control run gcp_compliance.control.compute_instance_no_write_permission_on_deny_policy

Snapshot and share results via Turbot Pipes:

powerpipe login
powerpipe control run gcp_compliance.control.compute_instance_no_write_permission_on_deny_policy --share

SQL

This control uses a named query:

compute_instance_no_write_permission_on_deny_policy

Tags