gcp_apikeys_keygcp_app_engine_applicationgcp_artifact_registry_repositorygcp_audit_policygcp_bigquery_datasetgcp_bigquery_jobgcp_bigquery_tablegcp_bigtable_instancegcp_billing_accountgcp_billing_budgetgcp_cloud_assetgcp_cloud_identity_groupgcp_cloud_identity_group_membershipgcp_cloud_run_servicegcp_cloudfunctions_functiongcp_compute_addressgcp_compute_autoscalergcp_compute_backend_bucketgcp_compute_backend_servicegcp_compute_diskgcp_compute_disk_metric_read_opsgcp_compute_disk_metric_read_ops_dailygcp_compute_disk_metric_read_ops_hourlygcp_compute_disk_metric_write_opsgcp_compute_disk_metric_write_ops_dailygcp_compute_disk_metric_write_ops_hourlygcp_compute_firewallgcp_compute_forwarding_rulegcp_compute_global_addressgcp_compute_global_forwarding_rulegcp_compute_ha_vpn_gatewaygcp_compute_imagegcp_compute_instancegcp_compute_instance_groupgcp_compute_instance_metric_cpu_utilizationgcp_compute_instance_metric_cpu_utilization_dailygcp_compute_instance_metric_cpu_utilization_hourlygcp_compute_instance_templategcp_compute_machine_imagegcp_compute_machine_typegcp_compute_networkgcp_compute_node_groupgcp_compute_node_templategcp_compute_project_metadatagcp_compute_regiongcp_compute_resource_policygcp_compute_routegcp_compute_routergcp_compute_snapshotgcp_compute_ssl_policygcp_compute_subnetworkgcp_compute_target_https_proxygcp_compute_target_poolgcp_compute_target_ssl_proxygcp_compute_target_vpn_gatewaygcp_compute_url_mapgcp_compute_vpn_tunnelgcp_compute_zonegcp_dataproc_clustergcp_dns_managed_zonegcp_dns_policygcp_dns_record_setgcp_iam_policygcp_iam_rolegcp_kms_keygcp_kms_key_ringgcp_kms_key_versiongcp_kubernetes_clustergcp_kubernetes_node_poolgcp_logging_bucketgcp_logging_exclusiongcp_logging_log_entrygcp_logging_metricgcp_logging_sinkgcp_monitoring_alert_policygcp_monitoring_groupgcp_monitoring_notification_channelgcp_organizationgcp_projectgcp_project_organization_policygcp_project_servicegcp_pubsub_snapshotgcp_pubsub_subscriptiongcp_pubsub_topicgcp_redis_instancegcp_service_accountgcp_service_account_keygcp_sql_backupgcp_sql_databasegcp_sql_database_instancegcp_sql_database_instance_metric_connectionsgcp_sql_database_instance_metric_connections_dailygcp_sql_database_instance_metric_connections_hourlygcp_sql_database_instance_metric_cpu_utilizationgcp_sql_database_instance_metric_cpu_utilization_dailygcp_sql_database_instance_metric_cpu_utilization_hourlygcp_storage_bucketgcp_storage_objectgcp_tag_bindinggcp_vertex_ai_endpointgcp_vertex_ai_model
Table: gcp_monitoring_alert_policy - Query Google Cloud Monitoring Alert Policies using SQL
Google Cloud Monitoring Alert Policies are a part of Google Cloud's operations suite that enables users to define conditions under which alerts are triggered. These alerts notify about specific events occurring in your Google Cloud environment. Alert policies are used to monitor resources, services, and applications running on Google Cloud.
Table Usage Guide
The gcp_monitoring_alert_policy table provides insights into alert policies within Google Cloud Monitoring. As a DevOps engineer or a system administrator, you can explore policy-specific details through this table, including conditions, enabled status, and associated notification channels. Utilize it to uncover information about alert policies, such as those with specific conditions, the notification channels associated with each policy, and the verification of policy status.
Examples
Basic info
Explore which monitoring alert policies are enabled in your Google Cloud Platform. This can help you assess the current alerting configuration and discover any potential gaps in your monitoring strategy.
select display_name, name, enabled, documentation ->> 'content' as doc_content, tagsfrom gcp_monitoring_alert_policy;select display_name, name, enabled, json_extract(documentation, '$.content') as doc_content, tagsfrom gcp_monitoring_alert_policy;Get the creation record for each alert policy
Discover the segments that show when and by whom each alert policy was last modified. This can be particularly useful for auditing purposes or to track changes in alert policies over time.
select display_name, name, creation_record ->> 'mutateTime' as mutation_time, creation_record ->> 'mutatedBy' as mutated_byfrom gcp_monitoring_alert_policy;select display_name, name, json_extract(creation_record, '$.mutateTime') as mutation_time, json_extract(creation_record, '$.mutatedBy') as mutated_byfrom gcp_monitoring_alert_policy;Get the condition details for each alert policy
Discover the specifics of each alert policy, including the filter details and threshold values. This allows for a comprehensive understanding of the alert triggers, aiding in effective monitoring and management.
select display_name, con ->> 'displayName' as filter_display_name, con -> 'conditionThreshold' ->> 'filter' as filter, con -> 'conditionThreshold' ->> 'thresholdValue' as threshold_value, con -> 'conditionThreshold' ->> 'trigger' as triggerfrom gcp_monitoring_alert_policy, jsonb_array_elements(conditions) as con;select display_name, json_extract(con.value, '$.displayName') as filter_display_name, json_extract(con.value, '$.conditionThreshold.filter') as filter, json_extract(con.value, '$.conditionThreshold.thresholdValue') as threshold_value, json_extract(con.value, '$.conditionThreshold.trigger') as triggerfrom gcp_monitoring_alert_policy, json_each(conditions) as con;Control examples
- 2.10 Ensure that the log metric filter and alerts exist for Cloud Storage IAM permission changes
- 2.10 Ensure that the log metric filter and alerts exist for Cloud Storage IAM permission changes
- 2.10 Ensure that the log metric filter and alerts exist for Cloud Storage IAM permission changes
- 2.11 Ensure that the log metric filter and alerts exist for SQL instance configuration changes
- 2.11 Ensure that the log metric filter and alerts exist for SQL instance configuration changes
- 2.11 Ensure that the log metric filter and alerts exist for SQL instance configuration changes
- 2.4 Ensure log metric filter and alerts exist for project ownership assignments/changes
- 2.4 Ensure log metric filter and alerts exist for project ownership assignments/changes
- 2.4 Ensure log metric filter and alerts exist for project ownership assignments/changes
- 2.5 Ensure that the log metric filter and alerts exist for Audit Configuration changes
- 2.5 Ensure that the log metric filter and alerts exist for Audit Configuration changes
- 2.5 Ensure that the log metric filter and alerts exist for Audit Configuration changes
- 2.6 Ensure that the log metric filter and alerts exist for Custom Role changes
- 2.6 Ensure that the log metric filter and alerts exist for Custom Role changes
- 2.6 Ensure that the log metric filter and alerts exist for Custom Role changes
- 2.7 Ensure that the log metric filter and alerts exist for VPC Network Firewall rule changes
- 2.7 Ensure that the log metric filter and alerts exist for VPC Network Firewall rule changes
- 2.7 Ensure that the log metric filter and alerts exist for VPC Network Firewall rule changes
- 2.8 Ensure that the log metric filter and alerts exist for VPC network route changes
- 2.8 Ensure that the log metric filter and alerts exist for VPC network route changes
- 2.8 Ensure that the log metric filter and alerts exist for VPC network route changes
- 2.9 Ensure that the log metric filter and alerts exist for VPC network changes
- 2.9 Ensure that the log metric filter and alerts exist for VPC network changes
- 2.9 Ensure that the log metric filter and alerts exist for VPC network changes
- Ensure log metric filter and alerts exist for project ownership assignments/changes
- Ensure that the log metric filter and alerts exist for Audit Configuration changes
- Ensure that the log metric filter and alerts exist for Cloud Storage IAM permission changes
- Ensure that the log metric filter and alerts exist for Custom Role changes
- Ensure that the log metric filter and alerts exist for SQL instance configuration changes
- Ensure that the log metric filter and alerts exist for VPC network changes
- Ensure that the log metric filter and alerts exist for VPC Network Firewall rule changes
- Ensure that the log metric filter and alerts exist for VPC network route changes
Schema for gcp_monitoring_alert_policy
| Name | Type | Operators | Description |
|---|---|---|---|
| _ctx | jsonb | Steampipe context in JSON form, e.g. connection_name. | |
| akas | jsonb | Array of globally unique identifier strings (also known as) for the resource. | |
| combiner | text | How to combine the results of multiple conditions to determine if an incident should be opened. | |
| conditions | jsonb | A list of conditions for the policy. | |
| creation_record | jsonb | A read-only record of the creation of the alerting policy. | |
| display_name | text | !=, = | A short name or phrase used to identify the policy in dashboards, notifications and incidents. |
| documentation | jsonb | Documentation that is included with notifications and incidents related to this policy. | |
| enabled | boolean | !=, = | Indicates whether the policy is enabled, or not. |
| location | text | The GCP multi-region, region, or zone in which the resource is located. | |
| mutation_record | jsonb | A read-only record of the most recent change to the alerting policy. | |
| name | text | = | The resource name for this policy. |
| notification_channels | jsonb | Identifies the notification channels to which notifications should be sent when incidents are opened or closed or when new violations occur on an already opened incident. | |
| project | text | The GCP Project in which the resource is located. | |
| tags | jsonb | A map of tags for the resource. | |
| title | text | Title of the resource. | |
| user_labels | jsonb | User-supplied key/value data to be used for organizing and identifying the AlertPolicy objects. | |
| validity | jsonb | Read-only description of how the alert policy is invalid. |
Export
This table is available as a standalone Exporter CLI. Steampipe exporters are stand-alone binaries that allow you to extract data using Steampipe plugins without a database.
You can download the tarball for your platform from the Releases page, but it is simplest to install them with the steampipe_export_installer.sh script:
/bin/sh -c "$(curl -fsSL https://steampipe.io/install/export.sh)" -- gcpYou can pass the configuration to the command with the --config argument:
steampipe_export_gcp --config '<your_config>' gcp_monitoring_alert_policy