gke

Checks

enable-auto-repair Kubernetes should have 'Automatic repair' enabled
enable-auto-upgrade Kubernetes should have 'Automatic upgrade' enabled
enable-ip-aliasing Clusters should have IP aliasing enabled
enable-master-networks Master authorized networks should be configured on GKE clusters
enable-network-policy Network Policy should be enabled on GKE clusters
enable-private-cluster Clusters should be set to private
enable-stackdriver-logging Stackdriver Logging should be enabled
enable-stackdriver-monitoring Stackdriver Monitoring should be enabled
enforce-pod-security-policy Pod security policy enforcement not defined.
metadata-endpoints-disabled Legacy metadata endpoints enabled.
no-legacy-authentication Legacy client authentication methods utilized.
no-public-control-plane GKE Control Plane should not be publicly accessible
node-metadata-security Node metadata value disables metadata concealment.
node-pool-uses-cos Ensure Container-Optimized OS (cos) is used for Kubernetes Engine Clusters Node image
node-shielding-enabled Shielded GKE nodes not enabled.
use-cluster-labels Clusters should be configured with Labels
use-rbac-permissions Legacy ABAC permissions are enabled.
use-service-account Checks for service account defined for GKE nodes