🚀 Socket Launch Week Day 5:Introducing Repository Access Permissions and Custom Roles.Learn more
Sign In

@sebspark/gcp-iam

Package Overview
Dependencies
Maintainers
3
Versions
66
Alerts
File Explorer

Advanced tools

License
Socket logo

Install Socket

Detect and block malicious and high-risk dependencies

Install

@sebspark/gcp-iam

Google IAM utilities. This package is intended to be run in GCP contexts, such as running under a GKE service account using Workload Identity.

latest
Source
npmnpm
Version
3.0.52
Version published
Weekly downloads
774
15.01%
Maintainers
3
Weekly downloads
 
Created
Source

@sebspark/gcp-iam

Google IAM utilities. This package is intended to be run in GCP contexts, such as running under a GKE service account using Workload Identity.

Explanation

It generates the JWT that we put into the proxy-authorization header. That JWT is signed by the GCP service account and the aud part of the JWT is set to the URL we are going to call in the API Gateway.

Generating and signing the JWT uses a bunch of CPU cycles, so it makes sense to cache them for a short time.

FAQs

Package last updated on 19 Jun 2026

Did you know?

Socket

Socket for GitHub automatically highlights issues in each pull request and monitors the health of all your open source dependencies. Discover the contents of your packages and block harmful activity before you install or update your dependencies.

Install

Related posts

Frontier AI Is Now Critical Infrastructure

Security News

Frontier AI Is Now Critical Infrastructure

The Fable shutdown shows how quickly model access can become a business continuity risk for AI-dependent engineering teams.

By Sarah Gooding  -  Jun 24, 2026