BOM - GCP Dataflow
- Query id: 895ed0d9-6fec-4567-8614-d7a74b599a53
- Query name: BOM - GCP Dataflow
- Platform: Terraform
- Severity: Trace
- Category: Bill Of Materials
- CWE: 532
- URL: Github
Description¶
A list of Dataflow resources found. Unified stream and batch data processing that's serverless, fast, and cost-effective.
Documentation
Code samples¶
Code samples with security vulnerabilities¶
Positive test num. 1 - tf file
resource "google_dataflow_job" "pubsub_stream" {
name = "tf-test-dataflow-job1"
template_gcs_path = "gs://my-bucket/templates/template_file"
temp_gcs_location = "gs://my-bucket/tmp_dir"
enable_streaming_engine = true
parameters = {
inputFilePattern = "${google_storage_bucket.bucket1.url}/*.json"
outputTopic = google_pubsub_topic.topic.id
}
transform_name_mapping = {
name = "test_job"
env = "test"
}
on_delete = "cancel"
}
resource "google_dataflow_job" "pubsub_stream2" {
name = "tf-test-dataflow-job1"
template_gcs_path = "gs://my-bucket/templates/template_file"
temp_gcs_location = "gs://my-bucket/tmp_dir"
enable_streaming_engine = true
parameters = {
inputFilePattern = "${google_storage_bucket.bucket1.url}/*.json"
outputTopic = google_pubsub_topic.topic.id
}
transform_name_mapping = {
name = "test_job"
env = "test"
}
on_delete = "cancel"
kms_key_name = "somekey"
ip_configuration = "WORKER_IP_PUBLIC"
}
Code samples without security vulnerabilities¶
Negative test num. 1 - tf file
# negative sample
resource "google_bigquery_dataset" "negative1" {
dataset_id = "example_dataset"
friendly_name = "test"
description = "This is a test description"
location = "EU"
default_table_expiration_ms = 3600000
labels = {
env = "default"
}
access {
role = "OWNER"
user_by_email = google_service_account.bqowner.email
}
access {
role = "READER"
domain = "hashicorp.com"
}
}