December 04, 2023, Conformity—Bug Fix
GCP
- Fixed a bug impacting the following CloudLogging rules:
- CloudLogging-001: Enable Monitoring for Bucket Permission Changes
- CloudLogging-002: Enable VPC Network Route Changes Monitoring
- CloudLogging-003: Enable VPC Network Changes Monitoring
- CloudLogging-004: Enable Monitoring for Custom Role Changes
- CloudLogging-005: Enable Monitoring for SQL Instance Configuration Changes
- CloudLogging-006: Enable Monitoring for Firewall Rule Changes
- CloudLogging-007: Enable Monitoring for Audit Configuration Changes
- CloudLogging-008: Enable Project Ownership Assignments Monitoring
Rules Update
GCP
CloudIAM-001: Restrict Administrator Access for Service Accounts:
- Update the rule to accurately exclude Google-managed service accounts.
- Update the rule to display the number of service accounts associated with each role. Additionally, detailed information will only be shown for roles that have fewer than 5 service accounts.