Open hussainak opened 2 years ago
Google SA keys have an expiration for year 10,000. The rego for https://github.com/GoogleCloudPlatform/policy-library/blob/master/policies/templates/gcp_iam_restrict_service_account_key_age_v1.yaml uses time.parse_rfc3339_ns method that does not work beyonf the year 2600ish. Please see the fix below:
time.parse_rfc3339_ns
https://play.openpolicyagent.org/p/cbOS7WYfnC
Google SA keys have an expiration for year 10,000. The rego for https://github.com/GoogleCloudPlatform/policy-library/blob/master/policies/templates/gcp_iam_restrict_service_account_key_age_v1.yaml uses
time.parse_rfc3339_nsmethod that does not work beyonf the year 2600ish. Please see the fix below:https://play.openpolicyagent.org/p/cbOS7WYfnC