Risk Level: high
Cloud Entity: Google Kubernetes Engine (GKE)
Spectral Rule ID: TFGCP018
Category: Containers

REMEDIATION

set master_auth in google_container_cluster

resource "google_container_cluster" "example" {
name     = "example-cluster"
location = "us-central1"

+  master_auth {
+    client_certificate_config {
+      ...
+    }
+  }
}

Google Kubernetes Engine (GKE)

GKE's Autopilot mode is a hands-off, fully managed Kubernetes platform that manages your cluster’s underlying compute infrastructure (without you needing to configure or monitor)—while still delivering a complete Kubernetes experience. And with per-pod billing, Autopilot ensures you pay only for your running pods, not system components, operating system overhead, or unallocated capacity for up to 85% savings from resource and operational efficiency.

https://registry.terraform.io/providers/hashicorp/google/latest/docs/resources/container_cluster
https://cloud.google.com/kubernetes-engine/docs/reference/rest/v1beta1/projects.locations.clusters
https://cloud.google.com/kubernetes-engine/docs/about

REMEDIATION

Google Kubernetes Engine (GKE)

Read more: