Views:
December 04, 2023, Conformity—Bug Fix
GCP
  • Fixed a bug impacting the following CloudLogging rules:
  • CloudLogging-001: Enable Monitoring for Bucket Permission Changes
  • CloudLogging-002: Enable VPC Network Route Changes Monitoring
  • CloudLogging-003: Enable VPC Network Changes Monitoring
  • CloudLogging-004: Enable Monitoring for Custom Role Changes
  • CloudLogging-005: Enable Monitoring for SQL Instance Configuration Changes
  • CloudLogging-006: Enable Monitoring for Firewall Rule Changes
  • CloudLogging-007: Enable Monitoring for Audit Configuration Changes
  • CloudLogging-008: Enable Project Ownership Assignments Monitoring
Rules Update
GCP
CloudIAM-001: Restrict Administrator Access for Service Accounts:
  • Update the rule to accurately exclude Google-managed service accounts.
  • Update the rule to display the number of service accounts associated with each role. Additionally, detailed information will only be shown for roles that have fewer than 5 service accounts.