search

GoogleCloudPlatform / pubsec-declarative-toolkit

The GCP PubSec Declarative Toolkit is a collection of declarative solutions to help you on your Journey to Google Cloud. Solutions are designed using Config Connector and deployed using Config Controller.
Apache License 2.0
31 stars 28 forks source link

look at checking if there is a way to get workload Artifact Registry vulnerability checks alongside the infrastructure vulnerability tab results already in SCC-P #165

Open fmichaelobrien opened 2 years ago

fmichaelobrien commented 2 years ago

Michael will look at checking if there is a way to get workload AR vulnerability checks alongside the infrastructure vulnerability tab results already in SCC-P

Add (for example Traffic Generation - canary container - https://github.com/GoogleCloudPlatform/pbmm-on-gcp-onboarding/blob/main/docs/google-cloud-landingzone-traffic-generation.md) https://console.cloud.google.com/artifacts/docker/magellan-01/northamerica-northeast1/traffic-generation/traffic-generation/

to

https://console.cloud.google.com/security/command-center/vulnerabilities

Artifact Registry scanning of cloud build targeted container

Screen Shot 2022-11-02 at 3 31 42 PM

SCC (non-premium has the vulnerabilities tab - but not compliance or threats

Screen Shot 2022-11-02 at 3 31 53 PM

Enumerate rest and gcloud apis https://cloud.google.com/artifact-registry/docs/reference/rest https://cloud.google.com/security-command-center/docs/reference/rest

fmichaelobrien commented 1 year ago

single pane of glass look at IDS