Conformity Updates - Week Ending 28 Nov 2025

We have updated support for the Google Cloud Platform Well-Architected Framework to the latest recommendations/ruleset, and we will deprecate outdated versions of the GCP Well-Architected Framework on 1 February 2026.

• OCI
  • OCI-KMS-002: Check for Environment Tags: This rule ensures that OCI KMS Vaults have environment tags for proper resource management and access control.
  • OCI-Compute-004: Enable Cloud Guard Workload Protection: This rule ensures that Cloud Guard Workload Protection feature is enabled for OCI compute instances.
  • OCI-BlockVolume-006: Enable Performance-Based Autotuning for Boot Volumes: This rule ensures that performance-based autotuning is enabled for your Oracle Cloud Infrastructure (OCI) Boot Volumes to automatically scale the disk volume's performance up or down based on real-time workload demands.
  • OCI-FileStorage-002: Use Resource Locking for File Systems: This rule ensures that resource locking is enabled for production or mission-critical Oracle Cloud Infrastructure (OCI) File Storage systems.
  • OCI-KMS-003: Check for Cost Allocation Tags: This rule ensures that OCI KMS Vaults have cost allocation tags for accurate cost allocation and budget tracking.
  • OCI-KMS-004: Check for KMS Key Protection Mode: This rule ensures that OCI KMS Vaults use SOFTWARE-protected Customer-Managed Keys (CMKs) for cost optimization.
  • OCI-Compute-006: Enable OS Management Service for Compute Instances: This rule ensures that the OS Management Service feature is enabled for your Oracle Cloud Infrastructure (OCI) compute instances.
  • OCI-Compute-005: Enable Custom Logs Monitoring: This rule ensures that Custom Logs Monitoring is enabled for your OCI compute instances.