[go: nahoru, domu]
Skip to content

Commit

Permalink
Removed gcp: indirection
Browse files Browse the repository at this point in the history
  • Loading branch information
@melinath
melinath committed May 24, 2022
1 parent f33518c commit bc0b199
Show file tree
Hide file tree
Showing 51 changed files with 84 additions and 140 deletions.
3 changes: 1 addition & 2 deletions bundler/test-data/generate-docs/source/samples_templates.yaml
View file
Original file line number Diff line number Diff line change
Expand Up @@ -23,8 +23,7 @@ items:
spec:
severity: high
match:
gcp:
target: ["organization/*"]
target: ["organization/*"]
parameters: {}
# Templates
- apiVersion: templates.gatekeeper.sh/v1alpha1
Expand Down
5 changes: 2 additions & 3 deletions samples/compute_allowed_networks.yaml
View file
Original file line number Diff line number Diff line change
Expand Up @@ -21,9 +21,8 @@ metadata:
spec:
severity: high
match:
gcp:
target: # {"$ref":"#/definitions/io.k8s.cli.setters.target"}
- "organizations/**"
target: # {"$ref":"#/definitions/io.k8s.cli.setters.target"}
- "organizations/**"
parameters:
allowed:
- https://www.googleapis.com/compute/v1/projects/vpc-sc-pub-sub-billing-alerts/global/networks/default1
3 changes: 1 addition & 2 deletions samples/compute_enable_oslogin_project.yaml
View file
Original file line number Diff line number Diff line change
Expand Up @@ -22,6 +22,5 @@ metadata:
spec:
severity: high
match:
gcp:
target: ["organization/*"]
target: ["organization/*"]
parameters: {}
5 changes: 2 additions & 3 deletions samples/gke_container_optimized_os.yaml
View file
Original file line number Diff line number Diff line change
Expand Up @@ -24,7 +24,6 @@ metadata:
spec:
severity: high
match:
gcp:
target: # {"$ref":"#/definitions/io.k8s.cli.setters.target"}
- "organizations/**"
target: # {"$ref":"#/definitions/io.k8s.cli.setters.target"}
- "organizations/**"
parameters: {}
5 changes: 2 additions & 3 deletions samples/gke_disable_default_service_account.yaml
View file
Original file line number Diff line number Diff line change
Expand Up @@ -24,7 +24,6 @@ metadata:
spec:
severity: high
match:
gcp:
target: # {"$ref":"#/definitions/io.k8s.cli.setters.target"}
- "organizations/**"
target: # {"$ref":"#/definitions/io.k8s.cli.setters.target"}
- "organizations/**"
parameters: {}
5 changes: 2 additions & 3 deletions samples/gke_disable_legacy_endpoints.yaml
View file
Original file line number Diff line number Diff line change
Expand Up @@ -24,7 +24,6 @@ metadata:
spec:
severity: high
match:
gcp:
target: # {"$ref":"#/definitions/io.k8s.cli.setters.target"}
- "organizations/**"
target: # {"$ref":"#/definitions/io.k8s.cli.setters.target"}
- "organizations/**"
parameters: {}
5 changes: 2 additions & 3 deletions samples/gke_enable_alias_ip_ranges.yaml
View file
Original file line number Diff line number Diff line change
Expand Up @@ -25,7 +25,6 @@ metadata:
spec:
severity: high
match:
gcp:
target: # {"$ref":"#/definitions/io.k8s.cli.setters.target"}
- "organizations/**"
target: # {"$ref":"#/definitions/io.k8s.cli.setters.target"}
- "organizations/**"
parameters: {}
3 changes: 1 addition & 2 deletions samples/gke_enable_binauthz.yaml
View file
Original file line number Diff line number Diff line change
Expand Up @@ -19,6 +19,5 @@ metadata:
spec:
severity: high
match:
gcp:
target: ["organization/*"]
target: ["organization/*"]
parameters: {}
5 changes: 2 additions & 3 deletions samples/gke_enable_shielded_nodes.yaml
View file
Original file line number Diff line number Diff line change
Expand Up @@ -22,7 +22,6 @@ metadata:
spec:
severity: high
match:
gcp:
target: # {"$ref":"#/definitions/io.k8s.cli.setters.target"}
- "organizations/**"
target: # {"$ref":"#/definitions/io.k8s.cli.setters.target"}
- "organizations/**"
parameters: {}
5 changes: 2 additions & 3 deletions samples/gke_enable_stackdriver_kubernetes_engine_monitoring.yaml
View file
Original file line number Diff line number Diff line change
Expand Up @@ -23,7 +23,6 @@ metadata:
spec:
severity: high
match:
gcp:
target: # {"$ref":"#/definitions/io.k8s.cli.setters.target"}
- "organizations/**"
target: # {"$ref":"#/definitions/io.k8s.cli.setters.target"}
- "organizations/**"
parameters: {}
5 changes: 2 additions & 3 deletions samples/gke_enable_stackdriver_logging.yaml
View file
Original file line number Diff line number Diff line change
Expand Up @@ -24,7 +24,6 @@ metadata:
spec:
severity: high
match:
gcp:
target: # {"$ref":"#/definitions/io.k8s.cli.setters.target"}
- "organizations/**"
target: # {"$ref":"#/definitions/io.k8s.cli.setters.target"}
- "organizations/**"
parameters: {}
5 changes: 2 additions & 3 deletions samples/gke_enable_stackdriver_monitoring.yaml
View file
Original file line number Diff line number Diff line change
Expand Up @@ -23,7 +23,6 @@ metadata:
spec:
severity: high
match:
gcp:
target: # {"$ref":"#/definitions/io.k8s.cli.setters.target"}
- "organizations/**"
target: # {"$ref":"#/definitions/io.k8s.cli.setters.target"}
- "organizations/**"
parameters: {}
5 changes: 2 additions & 3 deletions samples/gke_enable_workload_identity.yaml
View file
Original file line number Diff line number Diff line change
Expand Up @@ -22,7 +22,6 @@ metadata:
spec:
severity: high
match:
gcp:
target: # {"$ref":"#/definitions/io.k8s.cli.setters.target"}
- "organizations/**"
target: # {"$ref":"#/definitions/io.k8s.cli.setters.target"}
- "organizations/**"
parameters: {}
3 changes: 1 addition & 2 deletions samples/legacy/vpc_sc_project_perimeter_v1_whitelist.yaml
View file
Original file line number Diff line number Diff line change
Expand Up @@ -19,8 +19,7 @@ metadata:
spec:
severity: high
match:
gcp:
target: ["organizations/**"]
target: ["organizations/**"]
parameters:
mode: whitelist
project_id: 179891054368
Expand Down
5 changes: 2 additions & 3 deletions samples/network_enable_firewall_logs.yaml
View file
Original file line number Diff line number Diff line change
Expand Up @@ -22,7 +22,6 @@ metadata:
spec:
severity: high
match:
gcp:
target: # {"$ref":"#/definitions/io.k8s.cli.setters.target"}
- "organizations/**"
target: # {"$ref":"#/definitions/io.k8s.cli.setters.target"}
- "organizations/**"
parameters: {}
5 changes: 2 additions & 3 deletions samples/network_enable_flow_logs.yaml
View file
Original file line number Diff line number Diff line change
Expand Up @@ -25,7 +25,6 @@ metadata:
spec:
severity: high
match:
gcp:
target: # {"$ref":"#/definitions/io.k8s.cli.setters.target"}
- "organizations/**"
target: # {"$ref":"#/definitions/io.k8s.cli.setters.target"}
- "organizations/**"
parameters: {}
5 changes: 2 additions & 3 deletions samples/network_enable_private_google_access.yaml
View file
Original file line number Diff line number Diff line change
Expand Up @@ -24,7 +24,6 @@ metadata:
spec:
severity: high
match:
gcp:
target: # {"$ref":"#/definitions/io.k8s.cli.setters.target"}
- "organizations/**"
target: # {"$ref":"#/definitions/io.k8s.cli.setters.target"}
- "organizations/**"
parameters: {}
5 changes: 2 additions & 3 deletions samples/network_restrict_default.yaml
View file
Original file line number Diff line number Diff line change
Expand Up @@ -21,7 +21,6 @@ metadata:
spec:
severity: high
match:
gcp:
target: # {"$ref":"#/definitions/io.k8s.cli.setters.target"}
- "organizations/**"
target: # {"$ref":"#/definitions/io.k8s.cli.setters.target"}
- "organizations/**"
parameters: {}
5 changes: 2 additions & 3 deletions samples/vpc_sc_allowlist_regions.yaml
View file
Original file line number Diff line number Diff line change
Expand Up @@ -22,9 +22,8 @@ metadata:
spec:
severity: high
match:
gcp:
target: # {"$ref":"#/definitions/io.k8s.cli.setters.target"}
- "organizations/**"
target: # {"$ref":"#/definitions/io.k8s.cli.setters.target"}
- "organizations/**"
parameters:
regions:
- US
Expand Down
5 changes: 2 additions & 3 deletions samples/vpc_sc_ensure_access_levels.yaml
View file
Original file line number Diff line number Diff line change
Expand Up @@ -22,9 +22,8 @@ metadata:
spec:
severity: high
match:
gcp:
target: # {"$ref":"#/definitions/io.k8s.cli.setters.target"}
- "organizations/**"
target: # {"$ref":"#/definitions/io.k8s.cli.setters.target"}
- "organizations/**"
parameters:
required_access_levels:
- abcd
Expand Down
5 changes: 2 additions & 3 deletions samples/vpc_sc_ensure_project.yaml
View file
Original file line number Diff line number Diff line change
Expand Up @@ -22,9 +22,8 @@ metadata:
spec:
severity: high
match:
gcp:
target: # {"$ref":"#/definitions/io.k8s.cli.setters.target"}
- "organizations/**"
target: # {"$ref":"#/definitions/io.k8s.cli.setters.target"}
- "organizations/**"
parameters:
required_projects:
- "179891054369"
Expand Down
5 changes: 2 additions & 3 deletions samples/vpc_sc_ensure_services.yaml
View file
Original file line number Diff line number Diff line change
Expand Up @@ -21,9 +21,8 @@ metadata:
spec:
severity: high
match:
gcp:
target: # {"$ref":"#/definitions/io.k8s.cli.setters.target"}
- "organizations/**"
target: # {"$ref":"#/definitions/io.k8s.cli.setters.target"}
- "organizations/**"
parameters:
required_services:
- compute.googleapis.com
Expand Down
5 changes: 2 additions & 3 deletions samples/vpc_sc_ip_range.yaml
View file
Original file line number Diff line number Diff line change
Expand Up @@ -21,8 +21,7 @@ metadata:
spec:
severity: high
match:
gcp:
target: # {"$ref":"#/definitions/io.k8s.cli.setters.target"}
- "organizations/**"
target: # {"$ref":"#/definitions/io.k8s.cli.setters.target"}
- "organizations/**"
parameters:
maximum_cidr_size: 16
5 changes: 2 additions & 3 deletions samples/vpc_sc_project_perimeter_allowlist.yaml
View file
Original file line number Diff line number Diff line change
Expand Up @@ -21,9 +21,8 @@ metadata:
spec:
severity: high
match:
gcp:
target: # {"$ref":"#/definitions/io.k8s.cli.setters.target"}
- "organizations/**"
target: # {"$ref":"#/definitions/io.k8s.cli.setters.target"}
- "organizations/**"
parameters:
mode: allowlist
project_number: 179891054368
Expand Down
5 changes: 2 additions & 3 deletions samples/vpc_sc_project_perimeter_denylist.yaml
View file
Original file line number Diff line number Diff line change
Expand Up @@ -21,9 +21,8 @@ metadata:
spec:
severity: high
match:
gcp:
target: # {"$ref":"#/definitions/io.k8s.cli.setters.target"}
- "organizations/**"
target: # {"$ref":"#/definitions/io.k8s.cli.setters.target"}
- "organizations/**"
parameters:
mode: denylist
project_number: 179891054368
Expand Down
5 changes: 2 additions & 3 deletions samples/vpc_sc_project_perimeter_v1_denylist.yaml
View file
Original file line number Diff line number Diff line change
Expand Up @@ -21,9 +21,8 @@ metadata:
spec:
severity: high
match:
gcp:
target: # {"$ref":"#/definitions/io.k8s.cli.setters.target"}
- "organizations/**"
target: # {"$ref":"#/definitions/io.k8s.cli.setters.target"}
- "organizations/**"
parameters:
mode: denylist
project_id: 179891054368
Expand Down
3 changes: 1 addition & 2 deletions validator/test/fixtures/compute_block_ssh_keys/constraints/data.yaml
View file
Original file line number Diff line number Diff line change
Expand Up @@ -22,6 +22,5 @@ metadata:
spec:
severity: high
match:
gcp:
target: [ "organization/*" ]
target: [ "organization/*" ]
parameters: {}
3 changes: 1 addition & 2 deletions validator/test/fixtures/compute_network_interface/constraints/allowlist/data.yaml
View file
Original file line number Diff line number Diff line change
Expand Up @@ -19,8 +19,7 @@ metadata:
spec:
severity: high
match:
gcp:
target: ["organizations/**"]
target: ["organizations/**"]
parameters:
allowed:
- https://www.googleapis.com/compute/v1/projects/vpc-sc-pub-sub-billing-alerts/global/networks/default1
3 changes: 1 addition & 2 deletions ...test/fixtures/gke_container_optimized_os/constraints/gke_container_optimized_os/data.yaml
View file
Original file line number Diff line number Diff line change
Expand Up @@ -23,6 +23,5 @@ metadata:
spec:
severity: high
match:
gcp:
target: ["organizations/**"]
target: ["organizations/**"]
parameters: {}
3 changes: 1 addition & 2 deletions ...es/gke_container_optimized_os/constraints/gke_container_optimized_os_containerd/data.yaml
View file
Original file line number Diff line number Diff line change
Expand Up @@ -23,8 +23,7 @@ metadata:
spec:
severity: high
match:
gcp:
target: ["organizations/**"]
target: ["organizations/**"]
parameters:
cos_containerd_allowed: true

3 changes: 1 addition & 2 deletions ...disable_default_service_account/constraints/disable_gke_default_service_account/data.yaml
View file
Original file line number Diff line number Diff line change
Expand Up @@ -23,6 +23,5 @@ metadata:
spec:
severity: high
match:
gcp:
target: ["organizations/**"]
target: ["organizations/**"]
parameters: {}
3 changes: 1 addition & 2 deletions .../fixtures/gke_disable_legacy_endpoints/constraints/disable_gke_legacy_endpoints/data.yaml
View file
Original file line number Diff line number Diff line change
Expand Up @@ -21,6 +21,5 @@ metadata:
spec:
severity: high
match:
gcp:
target: ["organizations/**"]
target: ["organizations/**"]
parameters: {}
3 changes: 1 addition & 2 deletions ...tor/test/fixtures/gke_enable_alias_ip_ranges/constraints/enable_alias_ip_ranges/data.yaml
View file
Original file line number Diff line number Diff line change
Expand Up @@ -19,6 +19,5 @@ metadata:
spec:
severity: high
match:
gcp:
target: ["organizations/**"]
target: ["organizations/**"]
parameters: {}
3 changes: 1 addition & 2 deletions validator/test/fixtures/gke_enable_binauthz/constraints/gke_enable_binauthz/data.yaml
View file
Original file line number Diff line number Diff line change
Expand Up @@ -19,6 +19,5 @@ metadata:
spec:
severity: high
match:
gcp:
target: ["organization/*"]
target: ["organization/*"]
parameters: {}
3 changes: 1 addition & 2 deletions ...dator/test/fixtures/gke_enable_shielded_nodes/constraints/enable_shielded_nodes/data.yaml
View file
Original file line number Diff line number Diff line change
Expand Up @@ -19,6 +19,5 @@ metadata:
spec:
severity: high
match:
gcp:
target: ["organizations/**"]
target: ["organizations/**"]
parameters: {}
3 changes: 1 addition & 2 deletions ...r/test/fixtures/gke_enable_stackdriver_kubernetes_engine_monitoring/constraints/data.yaml
View file
Original file line number Diff line number Diff line change
Expand Up @@ -23,6 +23,5 @@ metadata:
spec:
severity: high
match:
gcp:
target: ["organizations/**"]
target: ["organizations/**"]
parameters: {}
3 changes: 1 addition & 2 deletions ...tures/gke_enable_stackdriver_logging/constraints/enable_gke_stackdriver_logging/data.yaml
View file
Original file line number Diff line number Diff line change
Expand Up @@ -21,6 +21,5 @@ metadata:
spec:
severity: high
match:
gcp:
target: ["organizations/**"]
target: ["organizations/**"]
parameters: {}
3 changes: 1 addition & 2 deletions ...gke_enable_stackdriver_monitoring/constraints/enable_gke_stackdriver_monitoring/data.yaml
View file
Original file line number Diff line number Diff line change
Expand Up @@ -19,6 +19,5 @@ metadata:
spec:
severity: high
match:
gcp:
target: ["organizations/**"]
target: ["organizations/**"]
parameters: {}
3 changes: 1 addition & 2 deletions .../fixtures/gke_enable_workload_identity/constraints/enable_gke_workload_identity/data.yaml
View file
Original file line number Diff line number Diff line change
Expand Up @@ -21,6 +21,5 @@ metadata:
spec:
severity: high
match:
gcp:
target: ["organizations/**"]
target: ["organizations/**"]
parameters: {}
3 changes: 1 addition & 2 deletions validator/test/fixtures/network_enable_firewall_logs/constraints/data.yaml
View file
Original file line number Diff line number Diff line change
Expand Up @@ -21,6 +21,5 @@ metadata:
spec:
severity: high
match:
gcp:
target: ["organizations/**"]
target: ["organizations/**"]
parameters: {}
3 changes: 1 addition & 2 deletions validator/test/fixtures/network_enable_flow_logs/constraints/data.yaml
View file
Original file line number Diff line number Diff line change
Expand Up @@ -23,6 +23,5 @@ metadata:
spec:
severity: high
match:
gcp:
target: ["organizations/**"]
target: ["organizations/**"]
parameters: {}
Loading

0 comments on commit bc0b199

Please sign in to comment.