2022-11-03 05:07:27 -07:00
|
|
|
# skip boilerplate check
|
|
|
|
#
|
|
|
|
# sample subset of useful organization policies, edit to suit requirements
|
|
|
|
|
|
|
|
run.allowedIngress:
|
2023-02-21 04:58:08 -08:00
|
|
|
rules:
|
|
|
|
- allow:
|
|
|
|
values:
|
|
|
|
- is:internal
|
2022-11-03 05:07:27 -07:00
|
|
|
|
2022-11-03 06:50:53 -07:00
|
|
|
# run.allowedVPCEgress:
|
2023-02-21 04:58:08 -08:00
|
|
|
# rules:
|
|
|
|
# - allow:
|
|
|
|
# values:
|
2022-11-03 06:50:53 -07:00
|
|
|
# - is:private-ranges-only
|
|
|
|
|
2022-11-03 05:07:27 -07:00
|
|
|
# cloudfunctions.allowedIngressSettings:
|
2023-02-21 04:58:08 -08:00
|
|
|
# rules:
|
|
|
|
# - allow:
|
|
|
|
# values:
|
|
|
|
# - is:ALLOW_INTERNAL_ONLY
|
2022-11-03 05:07:27 -07:00
|
|
|
|
|
|
|
# cloudfunctions.allowedVpcConnectorEgressSettings:
|
2023-02-21 04:58:08 -08:00
|
|
|
# rules:
|
|
|
|
# - allow:
|
|
|
|
# values:
|
|
|
|
# - is:PRIVATE_RANGES_ONLY
|
2022-11-03 05:07:27 -07:00
|
|
|
|
|
|
|
# cloudfunctions.requireVPCConnector:
|
2023-02-21 04:58:08 -08:00
|
|
|
# rules:
|
|
|
|
# - enforce: true
|