Skip to content

Commit

Permalink
Merge pull request #2322 from cncf-ci/autoaudit-prow
Browse files Browse the repository at this point in the history 
audit: update as of 2021-07-16
  • Loading branch information
@k8s-ci-robot
k8s-ci-robot authored Jul 16, 2021
2 parents 7b8072e + 007f83a commit 7f29b8e
Show file tree
Hide file tree
Showing 23 changed files with 53 additions and 29 deletions.
2 changes: 0 additions & 2 deletions audit/projects/k8s-artifacts-prod/services/logging/logs.json
View file
Original file line number Diff line number Diff line change
@@ -1,7 +1,5 @@
[
"projects/k8s-artifacts-prod/logs/cip-audit-log",
"projects/k8s-artifacts-prod/logs/cloudaudit.googleapis.com%2Factivity",
"projects/k8s-artifacts-prod/logs/cloudaudit.googleapis.com%2Fsystem_event",
"projects/k8s-artifacts-prod/logs/requests",
"projects/k8s-artifacts-prod/logs/run.googleapis.com%2Frequests",
"projects/k8s-artifacts-prod/logs/run.googleapis.com%2Fstderr"
Expand Down
5 changes: 1 addition & 4 deletions audit/projects/k8s-cip-test-prod/services/logging/logs.json
View file
Original file line number Diff line number Diff line change
@@ -1,4 +1 @@
[
"projects/k8s-cip-test-prod/logs/cloudaudit.googleapis.com%2Factivity",
"projects/k8s-cip-test-prod/logs/cloudaudit.googleapis.com%2Fsystem_event"
]
[]
4 changes: 4 additions & 0 deletions audit/projects/k8s-release/buckets/k8s-release-dev-asia/iam.json
View file
Original file line number Diff line number Diff line change
Expand Up @@ -3,6 +3,7 @@
{
"members": [
"group:[email protected]",
"group:[email protected]",
"projectEditor:k8s-release",
"projectOwner:k8s-release"
],
Expand All @@ -18,15 +19,18 @@
"members": [
"group:[email protected]",
"group:[email protected]",
"serviceAccount:[email protected]",
"serviceAccount:[email protected]"
],
"role": "roles/storage.legacyBucketWriter"
},
{
"members": [
"group:[email protected]",
"group:[email protected]",
"group:[email protected]",
"group:[email protected]",
"serviceAccount:[email protected]",
"serviceAccount:[email protected]"
],
"role": "roles/storage.objectAdmin"
Expand Down
1 change: 1 addition & 0 deletions audit/projects/k8s-release/buckets/k8s-release-dev-asia/lifecycle.json
View file
Original file line number Diff line number Diff line change
@@ -0,0 +1 @@
{"rule": [{"action": {"type": "Delete"}, "condition": {"age": 90}}]}
1 change: 1 addition & 0 deletions audit/projects/k8s-release/buckets/k8s-release-dev-asia/logging.json
View file
Original file line number Diff line number Diff line change
@@ -0,0 +1 @@
{"logBucket": "k8s-infra-artifacts-gcslogs", "logObjectPrefix": "k8s-release-dev-asia"}
8 changes: 4 additions & 4 deletions audit/projects/k8s-release/buckets/k8s-release-dev-asia/metadata.txt
View file
Original file line number Diff line number Diff line change
Expand Up @@ -3,16 +3,16 @@ gs://k8s-release-dev-asia/ :
Location type: multi-region
Location constraint: US
Versioning enabled: None
Logging configuration: None
Logging configuration: Present
Website configuration: None
CORS configuration: None
Lifecycle configuration: None
Lifecycle configuration: Present
Requester Pays enabled: None
Labels: None
Default KMS key: None
Time created: Mon, 31 Aug 2020 23:11:19 GMT
Time updated: Mon, 31 Aug 2020 23:11:44 GMT
Metageneration: 11
Time updated: Thu, 15 Jul 2021 22:40:22 GMT
Metageneration: 18
Bucket Policy Only enabled: True
ACL: []
Default ACL: []
4 changes: 4 additions & 0 deletions audit/projects/k8s-release/buckets/k8s-release-dev-eu/iam.json
View file
Original file line number Diff line number Diff line change
Expand Up @@ -3,6 +3,7 @@
{
"members": [
"group:[email protected]",
"group:[email protected]",
"projectEditor:k8s-release",
"projectOwner:k8s-release"
],
Expand All @@ -18,15 +19,18 @@
"members": [
"group:[email protected]",
"group:[email protected]",
"serviceAccount:[email protected]",
"serviceAccount:[email protected]"
],
"role": "roles/storage.legacyBucketWriter"
},
{
"members": [
"group:[email protected]",
"group:[email protected]",
"group:[email protected]",
"group:[email protected]",
"serviceAccount:[email protected]",
"serviceAccount:[email protected]"
],
"role": "roles/storage.objectAdmin"
Expand Down
1 change: 1 addition & 0 deletions audit/projects/k8s-release/buckets/k8s-release-dev-eu/lifecycle.json
View file
Original file line number Diff line number Diff line change
@@ -0,0 +1 @@
{"rule": [{"action": {"type": "Delete"}, "condition": {"age": 90}}]}
1 change: 1 addition & 0 deletions audit/projects/k8s-release/buckets/k8s-release-dev-eu/logging.json
View file
Original file line number Diff line number Diff line change
@@ -0,0 +1 @@
{"logBucket": "k8s-infra-artifacts-gcslogs", "logObjectPrefix": "k8s-release-dev-eu"}
8 changes: 4 additions & 4 deletions audit/projects/k8s-release/buckets/k8s-release-dev-eu/metadata.txt
View file
Original file line number Diff line number Diff line change
Expand Up @@ -3,16 +3,16 @@ gs://k8s-release-dev-eu/ :
Location type: multi-region
Location constraint: US
Versioning enabled: None
Logging configuration: None
Logging configuration: Present
Website configuration: None
CORS configuration: None
Lifecycle configuration: None
Lifecycle configuration: Present
Requester Pays enabled: None
Labels: None
Default KMS key: None
Time created: Mon, 31 Aug 2020 23:11:48 GMT
Time updated: Mon, 31 Aug 2020 23:12:12 GMT
Metageneration: 11
Time updated: Thu, 15 Jul 2021 22:40:55 GMT
Metageneration: 18
Bucket Policy Only enabled: True
ACL: []
Default ACL: []
4 changes: 4 additions & 0 deletions audit/projects/k8s-release/buckets/k8s-release-dev/iam.json
View file
Original file line number Diff line number Diff line change
Expand Up @@ -3,6 +3,7 @@
{
"members": [
"group:[email protected]",
"group:[email protected]",
"projectEditor:k8s-release",
"projectOwner:k8s-release"
],
Expand All @@ -18,15 +19,18 @@
"members": [
"group:[email protected]",
"group:[email protected]",
"serviceAccount:[email protected]",
"serviceAccount:[email protected]"
],
"role": "roles/storage.legacyBucketWriter"
},
{
"members": [
"group:[email protected]",
"group:[email protected]",
"group:[email protected]",
"group:[email protected]",
"serviceAccount:[email protected]",
"serviceAccount:[email protected]"
],
"role": "roles/storage.objectAdmin"
Expand Down
1 change: 1 addition & 0 deletions audit/projects/k8s-release/buckets/k8s-release-dev/logging.json
View file
Original file line number Diff line number Diff line change
@@ -0,0 +1 @@
{"logBucket": "k8s-infra-artifacts-gcslogs", "logObjectPrefix": "k8s-release-dev"}
6 changes: 3 additions & 3 deletions audit/projects/k8s-release/buckets/k8s-release-dev/metadata.txt
View file
Original file line number Diff line number Diff line change
Expand Up @@ -3,16 +3,16 @@ gs://k8s-release-dev/ :
Location type: multi-region
Location constraint: US
Versioning enabled: None
Logging configuration: None
Logging configuration: Present
Website configuration: None
CORS configuration: None
Lifecycle configuration: Present
Requester Pays enabled: None
Labels: None
Default KMS key: None
Time created: Tue, 04 Aug 2020 20:14:09 GMT
Time updated: Mon, 31 Aug 2020 23:12:43 GMT
Metageneration: 14
Time updated: Thu, 15 Jul 2021 22:39:48 GMT
Metageneration: 20
Bucket Policy Only enabled: True
ACL: []
Default ACL: []
4 changes: 4 additions & 0 deletions audit/projects/k8s-release/buckets/k8s-release-pull/iam.json
View file
Original file line number Diff line number Diff line change
Expand Up @@ -3,6 +3,7 @@
{
"members": [
"group:[email protected]",
"group:[email protected]",
"projectEditor:k8s-release",
"projectOwner:k8s-release"
],
Expand All @@ -19,15 +20,18 @@
"members": [
"group:[email protected]",
"group:[email protected]",
"serviceAccount:[email protected]",
"serviceAccount:[email protected]"
],
"role": "roles/storage.legacyBucketWriter"
},
{
"members": [
"group:[email protected]",
"group:[email protected]",
"group:[email protected]",
"group:[email protected]",
"serviceAccount:[email protected]",
"serviceAccount:project-304687256732@storage-transfer-service.iam.gserviceaccount.com",
"serviceAccount:[email protected]"
],
Expand Down
1 change: 1 addition & 0 deletions audit/projects/k8s-release/buckets/k8s-release-pull/logging.json
View file
Original file line number Diff line number Diff line change
@@ -0,0 +1 @@
{"logBucket": "k8s-infra-artifacts-gcslogs", "logObjectPrefix": "k8s-release-pull"}
6 changes: 3 additions & 3 deletions audit/projects/k8s-release/buckets/k8s-release-pull/metadata.txt
View file
Original file line number Diff line number Diff line change
Expand Up @@ -3,16 +3,16 @@ gs://k8s-release-pull/ :
Location type: multi-region
Location constraint: US
Versioning enabled: None
Logging configuration: None
Logging configuration: Present
Website configuration: None
CORS configuration: None
Lifecycle configuration: Present
Requester Pays enabled: None
Labels: None
Default KMS key: None
Time created: Tue, 04 Aug 2020 20:14:16 GMT
Time updated: Fri, 08 Jan 2021 21:10:11 GMT
Metageneration: 15
Time updated: Thu, 15 Jul 2021 22:41:28 GMT
Metageneration: 21
Bucket Policy Only enabled: True
ACL: []
Default ACL: []
4 changes: 2 additions & 2 deletions audit/projects/k8s-release/buckets/k8s-release/metadata.txt
View file
Original file line number Diff line number Diff line change
Expand Up @@ -11,8 +11,8 @@ gs://k8s-release/ :
Labels: None
Default KMS key: None
Time created: Fri, 07 Aug 2020 20:50:17 GMT
Time updated: Fri, 07 Aug 2020 20:50:37 GMT
Metageneration: 9
Time updated: Thu, 15 Jul 2021 23:25:55 GMT
Metageneration: 12
Bucket Policy Only enabled: True
ACL: []
Default ACL: []
6 changes: 6 additions & 0 deletions audit/projects/k8s-release/iam.json
View file
Original file line number Diff line number Diff line change
Expand Up @@ -38,6 +38,12 @@
],
"role": "roles/containeranalysis.ServiceAgent"
},
{
"members": [
"serviceAccount:[email protected]"
],
"role": "roles/containerregistry.ServiceAgent"
},
{
"members": [
"serviceAccount:service-304687256732@gcp-sa-containerscanning.iam.gserviceaccount.com"
Expand Down
1 change: 0 additions & 1 deletion audit/projects/k8s-release/services/enabled.txt
View file
Original file line number Diff line number Diff line change
Expand Up @@ -3,7 +3,6 @@ cloudbuild.googleapis.com Cloud Build API
cloudkms.googleapis.com Cloud Key Management Service (KMS) API
containeranalysis.googleapis.com Container Analysis API
containerregistry.googleapis.com Container Registry API
containerscanning.googleapis.com Container Scanning API
logging.googleapis.com Cloud Logging API
monitoring.googleapis.com Cloud Monitoring API
pubsub.googleapis.com Cloud Pub/Sub API
Expand Down
5 changes: 4 additions & 1 deletion audit/projects/k8s-release/services/logging/logs.json
View file
Original file line number Diff line number Diff line change
@@ -1 +1,4 @@
[]
[
"projects/k8s-release/logs/cloudaudit.googleapis.com%2Factivity",
"projects/k8s-release/logs/cloudaudit.googleapis.com%2Fsystem_event"
]
1 change: 0 additions & 1 deletion audit/projects/k8s-staging-cluster-api-gcp/services/logging/logs.json
View file
Original file line number Diff line number Diff line change
@@ -1,7 +1,6 @@
[
"projects/k8s-staging-cluster-api-gcp/logs/cloudaudit.googleapis.com%2Factivity",
"projects/k8s-staging-cluster-api-gcp/logs/cloudaudit.googleapis.com%2Fdata_access",
"projects/k8s-staging-cluster-api-gcp/logs/cloudaudit.googleapis.com%2Fsystem_event",
"projects/k8s-staging-cluster-api-gcp/logs/cloudbuild",
"projects/k8s-staging-cluster-api-gcp/logs/compute.googleapis.com%2Fshielded_vm_integrity"
]
2 changes: 1 addition & 1 deletion audit/projects/kubernetes-public/iam.json
View file
Original file line number Diff line number Diff line change
Expand Up @@ -123,7 +123,7 @@
},
{
"members": [
"serviceAccount:service-127754664067@serverless-robot-prod.iam.gserviceaccount.com"
"deleted:serviceAccount:service-127754664067@serverless-robot-prod.iam.gserviceaccount.com?uid=118182660088477675409"
],
"role": "roles/run.serviceAgent"
},
Expand Down
6 changes: 3 additions & 3 deletions audit/projects/kubernetes-public/services/container/clusters/aaa.json
View file
Original file line number Diff line number Diff line change
Expand Up @@ -37,7 +37,7 @@
"clusterIpv4Cidr": "10.40.0.0/14",
"createTime": "2019-09-18T23:39:24+00:00",
"currentMasterVersion": "1.19.9-gke.1900",
"currentNodeVersion": "1.18.17-gke.1901 *",
"currentNodeVersion": "1.19.9-gke.1900",
"databaseEncryption": {
"state": "DECRYPTED"
},
Expand Down Expand Up @@ -168,7 +168,7 @@
"upgradeSettings": {
"maxSurge": 1
},
"version": "1.18.17-gke.1901"
"version": "1.19.9-gke.1900"
},
{
"autoscaling": {
Expand Down Expand Up @@ -219,7 +219,7 @@
"upgradeSettings": {
"maxSurge": 1
},
"version": "1.18.17-gke.1901"
"version": "1.19.9-gke.1900"
}
],
"releaseChannel": {
Expand Down

0 comments on commit 7f29b8e

Please sign in to comment.