Officialv1.0.03 scenarios
Pulumi Gcp
Pulumi GCP guidance for IAM authority, project targeting, and state exposure risks.
deploywhisper skill install pulumi-gcp
How to use this skill
1. Install it locally
Use the install command above from any DeployWhisper app checkout that has the installer enabled.
2. Run analysis on matching artifacts
This skill activates when files or content patterns below are detected during analysis.
3. Verify behavior
Published registry data currently includes 3 deterministic scenarios for this skill.
Metadata
Author
DeployWhisper
Version
1.0.0
License
MIT
Scenarios
3
Tags
Triggers
- Pulumi.gcp.yaml
- pulumi-gcp.ts
Content patterns
- @pulumi/gcp
- pulumi_gcp
Guidance excerpt
Critical risk patterns
- Authoritative IAM bindings can remove required members and lock out workloads or operators = HIGH
- Cloud SQL or GKE replacements from region or name drift introduce avoidable downtime = HIGH
- Project or folder target changes move blast radius to the wrong tenant = CRITICAL
- Decrypting secrets into plain config or logs exposes sensitive state = CRITICAL
Review cues
- Review project targeting, IAM authority, and replacement indicators together for Pulumi GCP changes.
- Prefer deterministic roll-forward or rollback steps over hand-wavy remediation notes.