Research
/Security News
Shai Hulud Strikes Again (v2)
Another wave of Shai-Hulud campaign has hit npm with more than 500 packages and 700+ versions affected.
By Socket Research Team - Nov 24, 2025
🚨 Shai-Hulud Strikes Again:More than 700 Packages Compromised.Technical Analysis →
@pulumi/gcp
Advanced tools
- Version
- 8.42.0-alpha.1756190642
- Version published
- Weekly downloads
- 126K -12.11%
- Maintainers
- 2
Weekly downloads
- Created
Google Cloud Platform Resource Provider
The Google Cloud Platform (GCP) resource provider for Pulumi lets you use GCP resources in your cloud programs. To use this package, install the Pulumi CLI. For a streamlined Pulumi walkthrough, including language runtime installation and GCP configuration, select "Get Started" below.
Installing
This package is available in many languages in the standard packaging formats.
Node.js (JavaScript/TypeScript)
To use from JavaScript or TypeScript in Node.js, install using either npm:
$ npm install @pulumi/gcp
or yarn:
$ yarn add @pulumi/gcp
Python
To use from Python, install using pip:
$ pip install pulumi_gcp
Go
To use from Go, use go get to grab the latest version of the library
$ go get github.com/pulumi/pulumi-gcp/sdk/v6
.NET
To use from .NET, install using dotnet add package:
$ dotnet add package Pulumi.Gcp
Reference
For further information, visit GCP in the Pulumi Registry or for detailed API reference documentation, visit GCP API Docs in the Pulumi Registry.
FAQs
A Pulumi package for creating and managing Google Cloud Platform resources.
The npm package @pulumi/gcp receives a total of 100,778 weekly downloads. As such, @pulumi/gcp popularity was classified as popular.
We found that @pulumi/gcp demonstrated a healthy version release cadence and project activity because the last version was released less than a year ago. It has 2 open source maintainers collaborating on the project.
Package last updated on 26 Aug 2025
Did you know?
Socket for GitHub automatically highlights issues in each pull request and monitors the health of all your open source dependencies. Discover the contents of your packages and block harmful activity before you install or update your dependencies.
Related posts
Product
Introducing Webhook Events for Alert Changes
Add real-time Socket webhook events to your workflows to automatically receive software supply chain alert changes in real time.
By Phil Gates-Idem - Nov 21, 2025
Security News
ENISA Becomes a CVE Root, Expanding Its Role in Europe’s Vulnerability Ecosystem
ENISA has become a CVE Program Root, giving the EU a central authority for coordinating vulnerability reporting, disclosure, and cross-border response.
By Sarah Gooding - Nov 21, 2025