Top Rating
- Top Contributors
  Discover the Top Open Source contributors by country or by language
- Interviews
  Discover real stories from Open Source developers
Discover

Discover your Favorite Language
Discover the top trending repositories and projects on Github. Explore the latest trends in your preferred languages.

Zig

Swift

CoffeeScript

Objective-C

R

F#

Emacs Lisp

Assembly

More Languages
Awesome

Awesome repositories
Discover the most awesome repositories and projects of your favorite languages. Inspired by the Awesome-* lists trend in GitHub.

Elixir

Shell

Java

PowerShell

Racket

Rust

Go

C

More Languages
By Country

Rankings by Country
Discover the community of talented open source contributors in each country.

🇻🇦 Vatican City

🇬🇬 Guernsey

🇧🇲 Bermuda

🇵🇹 Portugal

🇸🇾 Syria

🇦🇱 Albania

🇧🇿 Belize

🇦🇲 Armenia

All Countries Compare Countries

darkbitio/gcp-iam-role-permissions

Stars
107
Rank 323,587 (Top 7 %)
Language
Ruby
Created over 4 years ago
Updated 2 months ago

darkbitio/gcp-iam-role-permissions

darkbitio

There are no reviews yet. Be the first to send feedback to the community and the maintainers!

Exports primitive and predefined GCP IAM Roles and their permissions

Fetches all Primitive and Predefined GCP IAM Roles

This repository fetches the ~1,170 primitive and predefined IAM Roles in JSON format to the roles directory. A GitHub Action is configured to refresh them daily. This allows for automatic tracking of changes as they are made by GCP.

A couple of helper scripts are provided to aid in searching/listing of the output. Note that jq should be installed and in your PATH:

list-all-permissions.sh grabs the unique list of all permissions contained in all roles fetched
list-alpha/beta/ga-roles.sh lists the roles labeled by GCP as alpha, beta, or GA (generally available)
list-roles-with-permission.sh <api.resource.verb> lists the roles that contain a specific permission passed by the first argument. e.g.: ./list-roles-with-permission.sh container.clusters.get
list-permissions-of-role.sh <role.name> lists the permissions contained by the role named <role.name>. e.g. ./list-roles-with-permission.sh container.admin (no need to prepend the roles/)

mkit

MKIT is a Managed Kubernetes Inspection Tool that validates several common security-related configuration settings of managed Kubernetes cluster objects and the workloads/resources running inside the cluster.

k8s-mirror

Creates a local mirror of a Kubernetes cluster in a docker container to support offline reviewing

tools

Darkbit Cloud Security Tools

aws-s3-dlp

Simple DLP monitor for AWS S3 is a tool built on top of CloudWatch events and Lambda functions to alert you when data is transferred to S3 buckets outside of your organization.

aws-config-resource-watcher

Watches for new AWS Config supported resources, updates the README with the latest list.

inspec-profile-eks

inspec-profile-k8s

inspec-profile-gke