Skip to main content

GCP

The GCP scrapers scrapes your GCP account to fetch all the resources & save them as configs.

gcp-scraper.yaml
apiVersion: configs.flanksource.com/v1
kind: ScrapeConfig
metadata:
  name: gcp-flanksource
  namespace: mc
spec:
  gcp:
    - project: workload-prod-eu-02
      exclude:
        - SecurityCenter
      #connection: connection://mc/gcloud-flanksource
      #include:
        #- storage.googleapis.com/Bucket
        #- container.googleapis.com/Cluster
      #auditLogs:
        #dataset: default._AllLogs
        #since: 30d
        #excludeMethods:
          #- io.k8s.*

Scraper

FieldDescriptionSchemeRequired
logLevelSpecify the level of logging.string
scheduleSpecify the interval to scrape in cron format. Defaults to every 60 minutes.string
retentionSettings for retaining changes, analysis and scraped itemsRetention
gcpGCP scrape config[]GCP

GCP

note

Either the connection name or the credentials are required (if Workload Identity is not being used)

FieldDescriptionScheme
project*

GCP Project ID

string

auditLogs

Query BigQuery dataset for audit logs

AuditLogs

connection

The connection url to use, mutually exclusive with credentials

Connection

credentials

The credentials to use for authentication

EnvVar

endpoint

Custom GCP Endpoint to use

string

exclude

GCP resources to exclude from scraping

[]string

include

GCP resources to include for scraping

[]string

skipTLSVerify

Skip TLS verification when connecting to GCP

boolean

labels

Labels for each config item.

map[string]string

properties

Custom templatable properties for the scraped config items.

[]ConfigProperty

tags

Tags for each config item. Max allowed: 5

[]ConfigTag

transform

Transform configs after they've been scraped

Transform

Audit Logs

FieldDescriptionScheme
datasetBigQuery dataset to query audit logs from (e.g., "default._AllLogs")string
sinceTime range to query audit logs (e.g., "24h", "7d", "30d")string
userAgentsFilter user agents matching these patternsMatchExpressions
principalEmailsFilter principal emails matching these patternsMatchExpressions
permissionsFilter permissions matching these patternsMatchExpressions
serviceNamesFilter service names matching these patternsMatchExpressions
methodsFilter methods matching these patternsMatchExpressions