turbot/gcp

steampipe plugin install gcpsteampipe plugin install gcp
gcp_audit_policygcp_bigquery_datasetgcp_bigquery_jobgcp_bigquery_tablegcp_bigtable_instancegcp_cloudfunctions_functiongcp_compute_addressgcp_compute_backend_bucketgcp_compute_backend_servicegcp_compute_diskgcp_compute_disk_metric_read_opsgcp_compute_disk_metric_read_ops_dailygcp_compute_disk_metric_read_ops_hourlygcp_compute_disk_metric_write_opsgcp_compute_disk_metric_write_ops_dailygcp_compute_disk_metric_write_ops_hourlygcp_compute_firewallgcp_compute_forwarding_rulegcp_compute_global_addressgcp_compute_global_forwarding_rulegcp_compute_imagegcp_compute_instancegcp_compute_instance_metric_cpu_utilizationgcp_compute_instance_metric_cpu_utilization_dailygcp_compute_instance_metric_cpu_utilization_hourlygcp_compute_instance_templategcp_compute_machine_typegcp_compute_networkgcp_compute_node_groupgcp_compute_node_templategcp_compute_project_metadatagcp_compute_regiongcp_compute_resource_policygcp_compute_routergcp_compute_snapshotgcp_compute_ssl_policygcp_compute_subnetworkgcp_compute_target_https_proxygcp_compute_target_poolgcp_compute_target_ssl_proxygcp_compute_target_vpn_gatewaygcp_compute_url_mapgcp_compute_vpn_tunnelgcp_compute_zonegcp_dns_managed_zonegcp_dns_policygcp_dns_record_setgcp_iam_policygcp_iam_rolegcp_kms_keygcp_kms_key_ringgcp_logging_bucketgcp_logging_exclusiongcp_logging_metricgcp_logging_sinkgcp_monitoring_alert_policygcp_monitoring_groupgcp_monitoring_notification_channelgcp_organizationgcp_projectgcp_project_organization_policygcp_project_servicegcp_pubsub_snapshotgcp_pubsub_subscriptiongcp_pubsub_topicgcp_service_accountgcp_service_account_keygcp_sql_backupgcp_sql_databasegcp_sql_database_instancegcp_sql_database_instance_metric_connectionsgcp_sql_database_instance_metric_connections_dailygcp_sql_database_instance_metric_connections_hourlygcp_sql_database_instance_metric_cpu_utilizationgcp_sql_database_instance_metric_cpu_utilization_dailygcp_sql_database_instance_metric_cpu_utilization_hourlygcp_storage_bucket

Table: gcp_bigtable_instance

A Cloud Bigtable instance is a container for your data. Instances have one or more clusters, located in different zones. Each cluster has at least 1 node.

Examples

Basic info

select
name,
instance_type,
state,
location
from
gcp_bigtable_instance;

Get members and their associated IAM roles for each instance

select
name,
location,
jsonb_array_elements_text(p -> 'members') as member,
p ->> 'role' as role
from
gcp_bigtable_instance,
jsonb_array_elements(iam_policy -> 'bindings') as p;

List instances whose members have Bigtable admin access

select
name,
instance_type,
jsonb_array_elements_text(i -> 'members') as members,
i ->> 'role' as role
from
gcp_bigtable_instance,
jsonb_array_elements(iam_policy -> 'bindings') as i
where
i ->> 'role' like '%bigtable.admin';

Count the number of instances per instance type

select
instance_type,
count(name)
from
gcp_bigtable_instance
group by
instance_type;

.inspect gcp_bigtable_instance

GCP Bigtable Instance

NameTypeDescription
akasjsonbArray of globally unique identifier strings (also known as) for the resource.
display_nametextThe descriptive name for this instance as it appears in UIs. Can be changed at any time, but should be kept globally unique to avoid conflicts.
iam_policyjsonbAn Identity and Access Management (IAM) policy, which specifies access controls for Google Cloud resources. A `Policy` is a collection of `bindings`. A `binding` binds one or more `members` to a single `role`. Members can be user accounts, service accounts, Google groups, and domains (such as G Suite). A `role` is a named list of permissions; each `role` can be an IAM predefined role or a user-created custom role. For some types of Google Cloud resources, a `binding` can also specify a `condition`, which is a logical expression that allows access to a resource only if the expression evaluates to `true`.
instance_typetextSpecifies the type of the instance. Defaults to `PRODUCTION`.
labelsjsonbLabels are a flexible and lightweight mechanism for organizing cloud resources into groups that reflect a customer's organizational needs and deployment strategies. They can be used to filter resources and aggregate metrics.
locationtextThe GCP multi-region, region, or zone in which the resource is located.
nametextA friendly name that identifies the resource.
projecttextThe GCP Project in which the resource is located.
statetextSpecifies the current state of the instance.
tagsjsonbA map of tags for the resource.
titletextTitle of the resource.