audit: update as of 2021-07-10

Author: cncf-ci

audit/projects/k8s-infra-project-jedha/description.json

@@ -0,0 +1,11 @@
+{
+  "createTime": "2021-07-10T12:35:00.145Z",
+  "lifecycleState": "ACTIVE",
+  "name": "k8s-infra-project-jedha",
+  "parent": {
+    "id": "758905017065",
+    "type": "organization"
+  },
+  "projectId": "k8s-infra-project-jedha",
+  "projectNumber": "1088262075988"
+}

audit/projects/k8s-infra-project-jedha/iam.json

@@ -0,0 +1,78 @@
+{
+  "bindings": [
+    {
+      "members": [
+        "serviceAccount:[email protected]"
+      ],
+      "role": "roles/compute.serviceAgent"
+    },
+    {
+      "members": [
+        "serviceAccount:service-1088262075988@container-engine-robot.iam.gserviceaccount.com"
+      ],
+      "role": "roles/container.serviceAgent"
+    },
+    {
+      "members": [
+        "serviceAccount:[email protected]"
+      ],
+      "role": "roles/containerregistry.ServiceAgent"
+    },
+    {
+      "members": [
+        "serviceAccount:[email protected]",
+        "serviceAccount:[email protected]"
+      ],
+      "role": "roles/editor"
+    },
+    {
+      "members": [
+        "serviceAccount:tf-gke-registry-cluste-1sj9@k8s-infra-project-jedha.iam.gserviceaccount.com",
+        "serviceAccount:tf-gke-registry-cluste-2csl@k8s-infra-project-jedha.iam.gserviceaccount.com",
+        "serviceAccount:tf-gke-registry-cluste-l9yw@k8s-infra-project-jedha.iam.gserviceaccount.com",
+        "serviceAccount:tf-gke-registry-cluste-xu8z@k8s-infra-project-jedha.iam.gserviceaccount.com"
+      ],
+      "role": "roles/logging.logWriter"
+    },
+    {
+      "members": [
+        "serviceAccount:tf-gke-registry-cluste-1sj9@k8s-infra-project-jedha.iam.gserviceaccount.com",
+        "serviceAccount:tf-gke-registry-cluste-2csl@k8s-infra-project-jedha.iam.gserviceaccount.com",
+        "serviceAccount:tf-gke-registry-cluste-l9yw@k8s-infra-project-jedha.iam.gserviceaccount.com",
+        "serviceAccount:tf-gke-registry-cluste-xu8z@k8s-infra-project-jedha.iam.gserviceaccount.com"
+      ],
+      "role": "roles/monitoring.metricWriter"
+    },
+    {
+      "members": [
+        "serviceAccount:tf-gke-registry-cluste-1sj9@k8s-infra-project-jedha.iam.gserviceaccount.com",
+        "serviceAccount:tf-gke-registry-cluste-2csl@k8s-infra-project-jedha.iam.gserviceaccount.com",
+        "serviceAccount:tf-gke-registry-cluste-l9yw@k8s-infra-project-jedha.iam.gserviceaccount.com",
+        "serviceAccount:tf-gke-registry-cluste-xu8z@k8s-infra-project-jedha.iam.gserviceaccount.com"
+      ],
+      "role": "roles/monitoring.viewer"
+    },
+    {
+      "members": [
+        "user:[email protected]"
+      ],
+      "role": "roles/owner"
+    },
+    {
+      "members": [
+        "serviceAccount:[email protected]"
+      ],
+      "role": "roles/pubsub.serviceAgent"
+    },
+    {
+      "members": [
+        "serviceAccount:tf-gke-registry-cluste-1sj9@k8s-infra-project-jedha.iam.gserviceaccount.com",
+        "serviceAccount:tf-gke-registry-cluste-2csl@k8s-infra-project-jedha.iam.gserviceaccount.com",
+        "serviceAccount:tf-gke-registry-cluste-l9yw@k8s-infra-project-jedha.iam.gserviceaccount.com",
+        "serviceAccount:tf-gke-registry-cluste-xu8z@k8s-infra-project-jedha.iam.gserviceaccount.com"
+      ],
+      "role": "roles/stackdriver.resourceMetadata.writer"
+    }
+  ],
+  "version": 1
+}

audit/projects/k8s-infra-project-jedha/service-accounts/[email protected]/description.json

@@ -0,0 +1,9 @@
+{
+  "disabled": true,
+  "displayName": "Compute Engine default service account",
+  "email": "[email protected]",
+  "name": "projects/k8s-infra-project-jedha/serviceAccounts/[email protected]",
+  "oauth2ClientId": "106911913404991129722",
+  "projectId": "k8s-infra-project-jedha",
+  "uniqueId": "106911913404991129722"
+}

audit/projects/k8s-infra-project-jedha/service-accounts/[email protected]/iam.json

@@ -0,0 +1 @@
+{}

audit/projects/k8s-infra-project-jedha/service-accounts/tf-gke-registry-cluste-1sj9@k8s-infra-project-jedha.iam.gserviceaccount.com/description.json

@@ -0,0 +1,8 @@
+{
+  "displayName": "Terraform-managed service account for cluster registry-cluster-europe",
+  "email": "tf-gke-registry-cluste-1sj9@k8s-infra-project-jedha.iam.gserviceaccount.com",
+  "name": "projects/k8s-infra-project-jedha/serviceAccounts/tf-gke-registry-cluste-1sj9@k8s-infra-project-jedha.iam.gserviceaccount.com",
+  "oauth2ClientId": "105643947909822174794",
+  "projectId": "k8s-infra-project-jedha",
+  "uniqueId": "105643947909822174794"
+}

audit/projects/k8s-infra-project-jedha/service-accounts/tf-gke-registry-cluste-1sj9@k8s-infra-project-jedha.iam.gserviceaccount.com/iam.json

@@ -0,0 +1 @@
+{}

audit/projects/k8s-infra-project-jedha/service-accounts/tf-gke-registry-cluste-2csl@k8s-infra-project-jedha.iam.gserviceaccount.com/description.json

@@ -0,0 +1,8 @@
+{
+  "displayName": "Terraform-managed service account for cluster registry-cluster-europe",
+  "email": "tf-gke-registry-cluste-2csl@k8s-infra-project-jedha.iam.gserviceaccount.com",
+  "name": "projects/k8s-infra-project-jedha/serviceAccounts/tf-gke-registry-cluste-2csl@k8s-infra-project-jedha.iam.gserviceaccount.com",
+  "oauth2ClientId": "109324601757214311170",
+  "projectId": "k8s-infra-project-jedha",
+  "uniqueId": "109324601757214311170"
+}

audit/projects/k8s-infra-project-jedha/service-accounts/tf-gke-registry-cluste-2csl@k8s-infra-project-jedha.iam.gserviceaccount.com/iam.json

@@ -0,0 +1 @@
+{}

audit/projects/k8s-infra-project-jedha/service-accounts/tf-gke-registry-cluste-l9yw@k8s-infra-project-jedha.iam.gserviceaccount.com/description.json

@@ -0,0 +1,8 @@
+{
+  "displayName": "Terraform-managed service account for cluster registry-cluster-us",
+  "email": "tf-gke-registry-cluste-l9yw@k8s-infra-project-jedha.iam.gserviceaccount.com",
+  "name": "projects/k8s-infra-project-jedha/serviceAccounts/tf-gke-registry-cluste-l9yw@k8s-infra-project-jedha.iam.gserviceaccount.com",
+  "oauth2ClientId": "107487212080222156284",
+  "projectId": "k8s-infra-project-jedha",
+  "uniqueId": "107487212080222156284"
+}

audit/projects/k8s-infra-project-jedha/service-accounts/tf-gke-registry-cluste-l9yw@k8s-infra-project-jedha.iam.gserviceaccount.com/iam.json

@@ -0,0 +1 @@
+{}

audit/projects/k8s-infra-project-jedha/service-accounts/tf-gke-registry-cluste-xu8z@k8s-infra-project-jedha.iam.gserviceaccount.com/description.json

@@ -0,0 +1,8 @@
+{
+  "displayName": "Terraform-managed service account for cluster registry-cluster-asia",
+  "email": "tf-gke-registry-cluste-xu8z@k8s-infra-project-jedha.iam.gserviceaccount.com",
+  "name": "projects/k8s-infra-project-jedha/serviceAccounts/tf-gke-registry-cluste-xu8z@k8s-infra-project-jedha.iam.gserviceaccount.com",
+  "oauth2ClientId": "105064496255328089237",
+  "projectId": "k8s-infra-project-jedha",
+  "uniqueId": "105064496255328089237"
+}

audit/projects/k8s-infra-project-jedha/service-accounts/tf-gke-registry-cluste-xu8z@k8s-infra-project-jedha.iam.gserviceaccount.com/iam.json

@@ -0,0 +1 @@
+{}

audit/projects/k8s-infra-project-jedha/services/bigquery/bigquery.datasets.json

@@ -0,0 +1,185 @@
+{
+  "commonInstanceMetadata": {
+    "items": [
+      {
+        "key": "gke-registry-cluster-us-33d4327e-secondary-ranges",
+        "value": "services:vpc-registry-us:registry-us:registry-cluster-us-services-range,shareable-pods:vpc-registry-us:registry-us:registry-cluster-us-pods-range"
+      },
+      {
+        "key": "gke-registry-cluster-europe-a531f737-secondary-ranges",
+        "value": "services:vpc-registry-europe:registry-europe:registry-cluster-eu-services-range,shareable-pods:vpc-registry-europe:registry-europe:registry-cluster-eu-pods-range"
+      },
+      {
+        "key": "gke-registry-cluster-asia-596051c3-secondary-ranges",
+        "value": "services:vpc-registry-asia:registry-asia:registry-cluster-asia-services-range,shareable-pods:vpc-registry-asia:registry-asia:registry-cluster-asia-pods-range"
+      }
+    ],
+    "kind": "compute#metadata"
+  },
+  "creationTimestamp": "2021-07-10T05:35:31.563-07:00",
+  "defaultNetworkTier": "PREMIUM",
+  "defaultServiceAccount": "[email protected]",
+  "id": "1841451747995036412",
+  "kind": "compute#project",
+  "name": "k8s-infra-project-jedha",
+  "quotas": [
+    {
+      "limit": 10000,
+      "metric": "SNAPSHOTS"
+    },
+    {
+      "limit": 30,
+      "metric": "NETWORKS"
+    },
+    {
+      "limit": 500,
+      "metric": "FIREWALLS"
+    },
+    {
+      "limit": 5000,
+      "metric": "IMAGES"
+    },
+    {
+      "limit": 175,
+      "metric": "STATIC_ADDRESSES"
+    },
+    {
+      "limit": 300,
+      "metric": "ROUTES"
+    },
+    {
+      "limit": 150,
+      "metric": "FORWARDING_RULES"
+    },
+    {
+      "limit": 500,
+      "metric": "TARGET_POOLS"
+    },
+    {
+      "limit": 500,
+      "metric": "HEALTH_CHECKS"
+    },
+    {
+      "limit": 575,
+      "metric": "IN_USE_ADDRESSES"
+    },
+    {
+      "limit": 500,
+      "metric": "TARGET_INSTANCES"
+    },
+    {
+      "limit": 100,
+      "metric": "TARGET_HTTP_PROXIES"
+    },
+    {
+      "limit": 100,
+      "metric": "URL_MAPS"
+    },
+    {
+      "limit": 30,
+      "metric": "BACKEND_SERVICES"
+    },
+    {
+      "limit": 1000,
+      "metric": "INSTANCE_TEMPLATES"
+    },
+    {
+      "limit": 50,
+      "metric": "TARGET_VPN_GATEWAYS"
+    },
+    {
+      "limit": 100,
+      "metric": "VPN_TUNNELS"
+    },
+    {
+      "limit": 30,
+      "metric": "BACKEND_BUCKETS"
+    },
+    {
+      "limit": 20,
+      "metric": "ROUTERS"
+    },
+    {
+      "limit": 100,
+      "metric": "TARGET_SSL_PROXIES"
+    },
+    {
+      "limit": 100,
+      "metric": "TARGET_HTTPS_PROXIES"
+    },
+    {
+      "limit": 100,
+      "metric": "SSL_CERTIFICATES"
+    },
+    {
+      "limit": 275,
+      "metric": "SUBNETWORKS"
+    },
+    {
+      "limit": 100,
+      "metric": "TARGET_TCP_PROXIES"
+    },
+    {
+      "limit": 10,
+      "metric": "SECURITY_POLICIES"
+    },
+    {
+      "limit": 200,
+      "metric": "SECURITY_POLICY_RULES"
+    },
+    {
+      "limit": 1000,
+      "metric": "XPN_SERVICE_PROJECTS"
+    },
+    {
+      "limit": 150,
+      "metric": "PACKET_MIRRORINGS"
+    },
+    {
+      "limit": 1000,
+      "metric": "NETWORK_ENDPOINT_GROUPS"
+    },
+    {
+      "limit": 6,
+      "metric": "INTERCONNECTS"
+    },
+    {
+      "limit": 5000,
+      "metric": "GLOBAL_INTERNAL_ADDRESSES"
+    },
+    {
+      "limit": 50,
+      "metric": "VPN_GATEWAYS"
+    },
+    {
+      "limit": 5000,
+      "metric": "MACHINE_IMAGES"
+    },
+    {
+      "limit": 20,
+      "metric": "SECURITY_POLICY_CEVAL_RULES"
+    },
+    {
+      "limit": 50,
+      "metric": "EXTERNAL_VPN_GATEWAYS"
+    },
+    {
+      "limit": 1,
+      "metric": "PUBLIC_ADVERTISED_PREFIXES"
+    },
+    {
+      "limit": 10,
+      "metric": "PUBLIC_DELEGATED_PREFIXES"
+    },
+    {
+      "limit": 1024,
+      "metric": "STATIC_BYOIP_ADDRESSES"
+    },
+    {
+      "limit": 150,
+      "metric": "INTERNAL_TRAFFIC_DIRECTOR_FORWARDING_RULES"
+    }
+  ],
+  "selfLink": "https://www.googleapis.com/compute/v1/projects/k8s-infra-project-jedha",
+  "xpnProjectStatus": "UNSPECIFIED_XPN_PROJECT_STATUS"
+}