Research
Security News
Malicious npm Packages Inject SSH Backdoors via Typosquatted Libraries
Socket’s threat research team has detected six malicious npm packages typosquatting popular libraries to insert SSH backdoors.
@cobraz/pulumi-gcp-scaffold
Advanced tools
This repo is a [Pulumi Package](https://www.pulumi.com/docs/guides/pulumi-packages/) used to deploy create a Google Cloud Project, connect it to a billing account and be able to enable any APIs for the project
This repo is a Pulumi Package used to deploy create a Google Cloud Project, connect it to a billing account and be able to enable any APIs for the project
It's written in Go, but thanks to Pulumi's multi language SDK generating capability, it create usable SDKs for all of Pulumi's supported languages
:warning: This package is a work in progress: Please do not use this in a production environment!
But if you need to build it yourself, just download this repository, install Task:
go get github.com/go-task/task/v3/cmd/task
And run the following command to build and install the plugin in the correct folder (resolved automatically based on the current Operating System):
task install
Before you begin, you'll need to install the latest version of the Pulumi Plugin using pulumi plugin install
:
pulumi plugin install resource gcp-scaffold v0.3.0 --server https://cobraz.jfrog.io/artifactory/pulumi-packages/pulumi-gcp-scaffold
This installs the plugin into ~/.pulumi/plugins
.
Next, you need to install your desired language SDK using your languages package manager.
pip3 install cobraz-pulumi-gcp-scaffold
npm install @cobraz/pulumi-gcp-scaffold
Coming Soon
go get -t github.com/cobraz/pulumi-gcp-scaffold/sdk/go/gcp
Once you've installed all the dependencies, you can use the library like any other Pulumi SDK. See the examples directory for examples of how you might use it.
To create a Google Cloud Project and enable some APIs then you would use the following example:
import * as pulumi from "@pulumi/pulumi";
import * as scaffold from "@cobraz/pulumi-gcp-scaffold";
const proj = new scaffold.Project("my-project", {
projectID: "my-project-name",
orgID: "<my gcp org id>",
billingAccountID: "<my billing account id>",
activatedApis: [
"compute.googleapis.com",
"container.googleapis.com",
"cloudbilling.googleapis.com"
]
})
export const projectName = proj.projectName;
export const projectID = proj.projectID;
This package currently requires the user to be aware of the orgID
and billingAccountID
. There are plans to make this easier.
FAQs
This repo is a [Pulumi Package](https://www.pulumi.com/docs/guides/pulumi-packages/) used to deploy create a Google Cloud Project, connect it to a billing account and be able to enable any APIs for the project
We found that @cobraz/pulumi-gcp-scaffold demonstrated a not healthy version release cadence and project activity because the last version was released a year ago. It has 1 open source maintainer collaborating on the project.
Did you know?
Socket for GitHub automatically highlights issues in each pull request and monitors the health of all your open source dependencies. Discover the contents of your packages and block harmful activity before you install or update your dependencies.
Research
Security News
Socket’s threat research team has detected six malicious npm packages typosquatting popular libraries to insert SSH backdoors.
Security News
MITRE's 2024 CWE Top 25 highlights critical software vulnerabilities like XSS, SQL Injection, and CSRF, reflecting shifts due to a refined ranking methodology.
Security News
In this segment of the Risky Business podcast, Feross Aboukhadijeh and Patrick Gray discuss the challenges of tracking malware discovered in open source softare.