search

GoogleCloudPlatform / policy-library

A library of constraint templates and sample constraints for Constraint Framework tools
Apache License 2.0
223 stars 129 forks source link

Include gke_enable_binauthz_v1 template and constraint in master branch #419

Closed jacks-reid closed 2 years ago

jacks-reid commented 2 years ago

gke_enable_binauthz_v1 has a template and constraint in the cloud-security-posture-management branch of the repository but those items are not included in the current master branch.

Including this policy into the master branch will help improve the visibility of the constraint. The policy template for gke_enable_binauthz_v1 does include an ancestry_path attribute that is not seemingly present in the master branch templates, so I'm not sure if the policy can be directly copied over.

metadata := {"resource": asset.name, "ancestry_path": ancestry_path}
morgante commented 2 years ago

We should copy it over without the ancestry_path metadata. I'd be happy to review a PR.

jacks-reid commented 2 years ago

Thanks for the quick reply. I'll take a stab at an initial PR.