Skip to content

Remove broken policies merged into dev #261

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Open
Shani1116 wants to merge 16 commits into
base: dev
Choose a base branch
from
Open

Remove broken policies merged into dev #261

Shani1116 wants to merge 16 commits into from

Conversation

@Shani1116
Copy link
Contributor

@Shani1116 Shani1116 commented Jan 7, 2026

Resolved errors in the following folders mentioned below. The auto_test.py script is now running as expected without any policy-related errors.

/inputs

  • google_firebase_database_instance/google_firebase_database_instance - spelling mistake

/policies

  • api_gateway/google_api_gateway_api_config_iam_policy/members - spelling mistake
  • api_gateway/google_api_gateway_api_config_iam_policy/role - update the helpers
  • firebase_app_hosting/build/container_image - update the helpers
  • gemini - update the helpers in all subfolders
  • GKEHub/google_gke_hub_feature_membership/pc_enabled_required - spelling mistake
  • api_hub/google_apihub_curation/location - add missing policy

Also removed previously committed plan.json files that were merged into dev before the .gitignore rules were introduced.

@Shani1116 Shani1116 requested a review from JBarazani January 7, 2026 08:08
@Shani1116
Copy link
Contributor Author

Shani1116 commented Jan 12, 2026

Added threading to the auto_test_v2 python script with 4 workers to speedup the script

  • Implemented thread-safe printing to ensure only one thread can print at a time and exception handling to catch errors from individual threads
  • Parallel execution for running the policy checks

Fixes done with regard to terraform and OPA related errors in folders that are already merged into dev -

Dataform
/inputs - Removed the project variable from tf configuration
/policies -

  • vars.rego file package import was incorrect
  • All the policies written was missing the .vars import
  • Removed some inaccurate conditions in some of the policies that are causing OPA eval errors

Looker
/inputs - Corrected the naming of resources and added missing “project” variable
/policies - Change the policy types of custom_domain_when_private and psc_mode_hygiene policies

@Shani1116
Copy link
Contributor Author

Shani1116 commented Jan 19, 2026

Continued fixes with regard to terraform and OPA related errors in folders that are already merged into dev -

Recaptchaenterprise ✅
/inputs -

  • Add missing project ID variable
  • Change the display name in all TF configurations

Gemini ✅
/inputs -

  • Change the c, nc logic that was set reversed in TF configuration

/policies -

  • Change the package import in disable_data_sharing_ga

Managed_kafka ✅
/inputs

  • Change the resource naming to c and nc in TF configurations
  • Change values accordingly in some TF configurations

/policies

  • Change the message and details entries in all policy.rego files
  • Change the policy logic to resolve OPA errors in some policies

@JBarazani JBarazani self-assigned this Feb 2, 2026
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@JBarazani JBarazani Awaiting requested review from JBarazani

At least 1 approving review is required to merge this pull request.

Assignees

@JBarazani JBarazani

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

2 participants

@Shani1116 @JBarazani