GoogleCloudSecuritycenterV2ResourceValueConfig
import type { GoogleCloudSecuritycenterV2ResourceValueConfig } from "https://googleapis.deno.dev/v1/securitycenter:v1.ts";
A resource value configuration (RVC) is a mapping configuration of user's resources to resource values. Used in Attack path simulations.
§Properties
Cloud provider this configuration applies to
Output only. Timestamp this resource value configuration was created.
List of resource labels to search for, evaluated with AND
. For example,
"resource_labels_selector": {"key": "value", "env": "prod"} will match
resources with labels "key": "value" AND
"env": "prod"
https://cloud.google.com/resource-manager/docs/creating-managing-labels
Apply resource_value only to resources that match resource_type.
resource_type will be checked with AND
of other resources. For example,
"storage.googleapis.com/Bucket" with resource_value "HIGH" will apply
"HIGH" value only to "storage.googleapis.com/Bucket" resources.
Resource value level this expression represents Only required when there is no Sensitive Data Protection mapping in the request
Project or folder to scope this configuration to. For example,
"project/456" would apply this configuration only to resources in
"project/456" scope and will be checked with AND
of other resources.
A mapping of the sensitivity on Sensitive Data Protection finding to resource values. This mapping can only be used in combination with a resource_type that is related to BigQuery, e.g. "bigquery.googleapis.com/Dataset".
Tag values combined with AND
to check against. For Google Cloud
resources, they are tag value IDs in the form of "tagValues/123". Example:
[ "tagValues/123", "tagValues/456", "tagValues/789" ]
https://cloud.google.com/resource-manager/docs/tags/tags-creating-and-managing