What's new?

• Added Turbot Guardrails control mappings and Terraform examples for 8 prevention objectives covering DNS security, API key restrictions, encryption, logging, and compute security.

Prevention Examples

• Enforce CMEK for GCP Dataproc clusters
• Enforce DNSSEC configuration to prohibit RSASHA1 key signing for GCP Cloud DNS managed zones
• Enforce DNSSEC configuration to prohibit RSASHA1 zone signing for GCP Cloud DNS managed zones
• Enforce KMS key rotation period for GCP crypto keys
• Require API restrictions for GCP API keys
• Require Confidential Computing for GCP Compute Engine instances
• Require host restrictions for GCP API keys
• Require logging for GCP Cloud DNS managed zones