GoogleCloudPlatform pbmm-on-gcp-onboarding issues

GoogleCloudPlatform / pbmm-on-gcp-onboarding

GCP Canadian Public Sector Landing Zone overlay on top of the TEF via CFT modules - a secure cloud foundation

https://cloud.google.com/architecture/security-foundations

Apache License 2.0

45 stars 56 forks source link

issues

Newest

Newest Most commented Recently updated Oldest Least commented Least recently updated

Cloud Source Unavailable

#469 hdospitia opened 3 weeks ago
2
Potential security-related issues

#468 mromascanu123 opened 1 month ago
3
Updated 6-org-policy readme.md

#467 rohitchoudhari8105 closed 3 months ago
1
fix(deps): Update terraform modules

#466 renovate-bot opened 3 months ago
0
fix(deps): Update dependency google-cloud-build to v3.27.1

#465 renovate-bot opened 3 months ago
0
fix(deps): Update dependency @google-cloud/security-center to v8.12.0

#464 renovate-bot opened 3 months ago
0
fix(deps): Update Terraform kubernetes to ~> 2.33.0

#463 renovate-bot opened 3 months ago
0
fix(deps): Update Terraform helm to ~> 2.16.0

#462 renovate-bot opened 3 months ago
0
chore(deps): Update golangci/golangci-lint-action action to v6.1.1

#461 renovate-bot opened 3 months ago
0
chore(deps): Update go modules and/or dev-tools

#460 renovate-bot opened 3 months ago
1
fix(deps): Update dependency google-cloud-asset to v2.2.2

#459 renovate-bot opened 3 months ago
0
chore(deps): Update actions/setup-go action to v5.1.0

#458 renovate-bot opened 3 months ago
0
chore(deps): Update actions/checkout action to v4.2.2

#457 renovate-bot opened 3 months ago
0
Dependency Dashboard

#456 forking-renovate[bot] opened 3 months ago
0
chore(main): release 0.1.0

#455 release-please[bot] opened 3 months ago
0
Realign naming convention

#454 tackaberry closed 3 months ago
0
Bump github.com/hashicorp/go-getter from 1.7.2 to 1.7.5 in /helpers/foundation-deployer

#453 dependabot[bot] opened 5 months ago
0
New org: billing sharing from external org now requires addition of directory id - as GCP default organization policy - domain restricted sharing

#452 obriensystems closed 2 months ago
2
Bump @grpc/grpc-js from 1.9.6 to 1.9.15 in /1-org/modules/cai-monitoring/function-source

#451 dependabot[bot] opened 5 months ago
0
Remove BAA from sa.tf in 0-boostrap - simuliation with only BAU - retest LZ

#450 obriensystems closed 3 months ago
1
service account impersonation for developer accounts

#449 obriensystems closed 3 months ago
3
Merge Marian's latest dev branch - incorporating 20240520 TEF upstream sync

#448 fmichaelobrien closed 3 months ago
1
Merge stable client branch to test - draft for diff - do not branch or merge to main yet - use in place

#447 fmichaelobrien closed 3 months ago
2
Azure and GCP API calls - Cross Cloud Interconnect and Azure Expressroute

#446 obriensystems closed 3 months ago
1
upstream: developer workflow - remove seed project liens before deleting - or disable liens on create

#445 obriensystems closed 3 months ago
1
upstream: missing main branch references in 0-bootstrap push-to-repo.sh step - switch to master

#444 obriensystems closed 3 months ago
1
Upstream: full group creation hangs on eventual consistency - wait 5 min to restart 0-bootstrap terraform plan/apply

#443 obriensystems closed 3 months ago
1
Canary: serverless: gen app builder

#442 obriensystems closed 3 months ago
1
ITSG-33 security controls mapping for TEF V4 - for org policies

#441 fmichaelobrien closed 2 months ago
4
Add CSR clone procedure using SSH instead of gcloud for cloud shell

#440 obriensystems closed 3 months ago
1
Migration: CSR (Cloud Source Repositories) EOL June 2024 - move to SSM (Secure Source Manager) as default CICD repository

#439 obriensystems closed 3 months ago
1
pipeline retries for what can go wrong with timeout, group retry, CB pool creation

#438 fmichaelobrien closed 3 months ago
1
terraform destroy - procedure and docs

#437 obriensystems closed 3 months ago
1
Hold: secondary SA role of owner should not be required on bu proj

#436 obriensystems closed 3 months ago
1
#387 - upstream TEF sync 20240511 - to PR 1199

#435 obriensystems closed 3 months ago
4
Document Cloud Build worker pool quota increase required for the 1 private pool per region - will hit on 2nd dev LZ

#434 obriensystems closed 3 months ago
5
#432 - cloudidentity googleapis enable

#433 obriensystems closed 6 months ago
0
Add cloudidentity.googleapis.com - from 360 run - missing from readme

#432 obriensystems closed 3 months ago
2
Cloud Build module in bootstrap fails on CSR clone gcloud API auth during push-to-repo.sh for CB trigger creation on particular client - use ssh key and ssh-agent

#431 fmichaelobrien closed 3 months ago
20
Verify federated ad/entra user visible in IAM gcp side for role assignment - currently only admin side can assign user to a group

#430 fmichaelobrien closed 3 months ago
1
Windows amd64/ia64 local gcloud client support: terraform apply via ming64/git-bash tested - expected win32 issue running bootstrap module check_env.sh works only inside docker container (ubuntu or google/cloud-sdk) - or use cloud shell

#429 fmichaelobrien closed 3 months ago
14
Verify windows /AVD workstation 0-bootstrap deployment has no issues with symlinks

#428 fmichaelobrien closed 3 months ago
3
#421 - main branch defaults to CB/CSR

#427 fmichaelobrien closed 6 months ago
0
#425 - cloudbuild services enable readme

#426 fmichaelobrien closed 6 months ago
0
Missing cloudbuild services enable on bootstrap requires a 5 min wait state before a terraform re apply on 0-bootstrap - delete the existing cloudbuild worker pool to proceed

#425 obriensystems closed 3 months ago
1
As part of 421 - CB/local retrofit - verify KMS = us and GCS = US locations equivalents for nane1/nane2

#424 obriensystems closed 3 months ago
1
#421 - prepare main for dual CB/CSR and terraform local deployment modes

#423 obriensystems closed 6 months ago
1
As part of 421 - CB/local retrofit - verify no trailing . required for perimeter_additional_members like for the DNS peering domain - defaulting to no

#422 obriensystems closed 3 months ago
2
Replace/revert-back CB/CSR options as we add local terraform and ado (399) options - to be able to use CB/CSR as a current option while we retrofit

#421 fmichaelobrien closed 3 months ago
6
#419 - warn to use branch 357 over main for default CB/CSR until remaining local terraform mode is upsourced and/or CB/CSR is returned as part of ADO 399 work

#420 fmichaelobrien closed 6 months ago
1