Which resources does Vanta fetch from GCP?

The following items are the resource types that Vanta supports fetching in from Google Cloud Platform (GCP).

Supported Resources

  • Artifact Registry repositories
  • CloudSQL instances
  • Cloud Task Queues
  • Datastore projects
  • Firestore projects
  • Log buckets
  • Log sinks
  • Monitoring policies
  • Networks
  • Role grants
  • Roles
  • Storage buckets
  • Subnets
  • Firebase Hosting
  • Firebase Authentication
  • Google Cloud Kubernetes
  • Google Cloud Armor
  • Bigquery datasets
  • Bigtable instances

Resources such as cloud functions, load balancer forwarding rules, GKE Clusters, Services created by GKE  (Cluster IP, Node Port, Internal LB), Autopilot clusters,  and any other resource type not listed above are not supported.

 

How do I track the resources Vanta does not support fetching?

Administrators have the option to add custom inventory items to these unsupported resources. For details, see Bulk Upload Custom Inventory Items and Tracking Inventory in Vanta. Once the items are added, admins can add a description and specify whether the resource contains user data.

Administrators will also need to work with their auditor to collect manual evidence for these resources and store it as a Custom Document in Vanta. 

Updated