Control: Ensure Compute instances are launched with Shielded VM enabled
Description
To defend against advanced threats and ensure that the boot loader and firmware on your VMs are signed and untampered, it is recommended that Compute instances are launched with Shielded VM enabled.
Usage
Run the control in your terminal:
powerpipe control run gcp_compliance.control.compute_instance_shielded_vm_enabledSnapshot and share results via Turbot Pipes:
powerpipe loginpowerpipe control run gcp_compliance.control.compute_instance_shielded_vm_enabled --shareSQL
This control uses a named query:
compute_instance_shielded_vm_enabled