Vertex AI index endpoint is public

Description

This policy evaluates whether the Vertex AI index endpoint is set to private in Google Cloud Platform. If it is not private, it means that the endpoint could be exposed to the public, potentially disclosing sensitive information and opening up avenues for undesired changes to be made. This could lead to security vulnerabilities, such as data breaches or unauthorized access. Thus, ensuring that the Vertex AI index endpoint is private enhances the security of the system.

Code Example

resource "google_vertex_ai_index_endpoint" "default" {
  ...
-  public_endpoint_enabled = true
}

Remediation

Terraform

Resource: google_vertex_ai_index_endpoint
Arguments: public_endpoint_enabled

To fix this issue, set `public_endpoint_enabled` to `false` or do not include this parameter.

Rule Details

Field	Value
ID	IAC-1019
Severity	MEDIUM
IaC Type	Terraform
Frameworks	Terraform, TerraformPlan
Checkov ID	CKV2_GCP_34

References

Checkov Rule

Overview

SAST (Application Security)

SCA (Dependencies)

Secrets Detection

IaC Security

License Compliance

SAST Rules

IaC Rules

License Rules

Vertex AI index endpoint is public

Description

Code Example

Remediation

Rule Details

References

SAST Rules

IaC Rules

License Rules

Vertex AI index endpoint is public ​

Description ​

Code Example ​

Remediation ​

Rule Details ​

References ​

Vertex AI index endpoint is public

Description

Code Example

Remediation

Rule Details

References