v1.0 for Steampipe, Powerpipe, Flowpipe, 116 plugins, and 44 mods →
Powerpipe Hub 
Hub
Mods
turbot/gcp_compliance
Overview
12Dashboards
536Controls
201Queries
2Variables
GitHub

Control: Compute Instances should restrict write permission on deny policy

Description

This control ensures that Compute Instance does not allow write permission on deny policies.

Usage

Run the control in your terminal:

powerpipe control run gcp_compliance.control.compute_instance_no_write_permission_on_deny_policy

Snapshot and share results via Turbot Pipes:

powerpipe login
powerpipe control run gcp_compliance.control.compute_instance_no_write_permission_on_deny_policy --share

SQL

This control uses a named query:

compute_instance_no_write_permission_on_deny_policy

Tags

category = Compliance
plugin = gcp
service = GCP/Compute