kubernetes · k8s-ci-robot · May 24, 2021 · May 24, 2021 · spiffxp · May 24, 2021
diff --git a/audit/projects/k8s-artifacts-prod/services/enabled.txt b/audit/projects/k8s-artifacts-prod/services/enabled.txt
@@ -9,7 +9,6 @@ cloudtrace.googleapis.com            Cloud Trace API
 compute.googleapis.com               Compute Engine API
 containeranalysis.googleapis.com     Container Analysis API
 containerregistry.googleapis.com     Container Registry API
-containerscanning.googleapis.com     Container Scanning API
 datastore.googleapis.com             Cloud Datastore API
 logging.googleapis.com               Cloud Logging API
 monitoring.googleapis.com            Cloud Monitoring API

diff --git a/audit/projects/k8s-cip-test-prod/services/enabled.txt b/audit/projects/k8s-cip-test-prod/services/enabled.txt
@@ -7,7 +7,6 @@ cloudtrace.googleapis.com         Cloud Trace API
 compute.googleapis.com            Compute Engine API
 containeranalysis.googleapis.com  Container Analysis API
 containerregistry.googleapis.com  Container Registry API
-containerscanning.googleapis.com  Container Scanning API
 datastore.googleapis.com          Cloud Datastore API
 logging.googleapis.com            Cloud Logging API
 monitoring.googleapis.com         Cloud Monitoring API

diff --git a/...t/projects/k8s-infra-ii-sandbox/buckets/k8s-infra-ii-sandbox-bb-test/bucketpolicyonly.txt b/...t/projects/k8s-infra-ii-sandbox/buckets/k8s-infra-ii-sandbox-bb-test/bucketpolicyonly.txt
@@ -0,0 +1,3 @@
+Bucket Policy Only setting for gs://k8s-infra-ii-sandbox-bb-test:
+  Enabled: False
+
diff --git a/audit/projects/k8s-infra-ii-sandbox/buckets/k8s-infra-ii-sandbox-bb-test/cors.txt b/audit/projects/k8s-infra-ii-sandbox/buckets/k8s-infra-ii-sandbox-bb-test/cors.txt
@@ -0,0 +1 @@
+gs://k8s-infra-ii-sandbox-bb-test/ has no CORS configuration.
diff --git a/audit/projects/k8s-infra-ii-sandbox/buckets/k8s-infra-ii-sandbox-bb-test/iam.json b/audit/projects/k8s-infra-ii-sandbox/buckets/k8s-infra-ii-sandbox-bb-test/iam.json
@@ -0,0 +1,17 @@
+{
+  "bindings": [
+    {
+      "members": [
+        "projectEditor:k8s-infra-ii-sandbox",
+        "projectOwner:k8s-infra-ii-sandbox"
+      ],
+      "role": "roles/storage.legacyBucketOwner"
+    },
+    {
+      "members": [
+        "projectViewer:k8s-infra-ii-sandbox"
+      ],
+      "role": "roles/storage.legacyBucketReader"
+    }
+  ]
+}
diff --git a/audit/projects/k8s-infra-ii-sandbox/buckets/k8s-infra-ii-sandbox-bb-test/logging.txt b/audit/projects/k8s-infra-ii-sandbox/buckets/k8s-infra-ii-sandbox-bb-test/logging.txt
@@ -0,0 +1 @@
+gs://k8s-infra-ii-sandbox-bb-test/ has no logging configuration.
diff --git a/audit/projects/k8s-infra-prow-build-trusted/secrets/cncf-ci-github-token/description.json b/audit/projects/k8s-infra-prow-build-trusted/secrets/cncf-ci-github-token/description.json
@@ -1,7 +1,8 @@
 {
   "createTime": "2021-02-11T04:21:30.200768Z",
-  "etag": "\"15bb07da9956c0\"",
+  "etag": "\"15c2db0d2d7401\"",
   "labels": {
+    "group": "sig-testing",
     "sig": "testing"
   },
   "name": "projects/180382678033/secrets/cncf-ci-github-token",

diff --git a/audit/projects/k8s-infra-prow-build-trusted/secrets/cncf-ci-github-token/iam.json b/audit/projects/k8s-infra-prow-build-trusted/secrets/cncf-ci-github-token/iam.json
@@ -2,6 +2,7 @@
   "bindings": [
     {
       "members": [
+        "group:k8s-infra-ii-coop@kubernetes.io",
         "group:k8s-infra-prow-oncall@kubernetes.io",
         "user:hh@ii.coop"
       ],

diff --git a/audit/projects/k8s-infra-prow-build-trusted/secrets/cncf-ci-token/description.json b/audit/projects/k8s-infra-prow-build-trusted/secrets/cncf-ci-token/description.json
@@ -0,0 +1,8 @@
+{
+  "createTime": "2021-05-21T18:03:26.516649Z",
+  "etag": "\"15c2dae05eb9a9\"",
+  "name": "projects/180382678033/secrets/cncf-ci-token",
+  "replication": {
+    "automatic": {}
+  }
+}
diff --git a/audit/projects/k8s-infra-prow-build-trusted/secrets/cncf-ci-token/iam.json b/audit/projects/k8s-infra-prow-build-trusted/secrets/cncf-ci-token/iam.json
@@ -0,0 +1 @@
+{}
diff --git a/audit/projects/k8s-infra-prow-build-trusted/secrets/cncf-ci-token/versions.json b/audit/projects/k8s-infra-prow-build-trusted/secrets/cncf-ci-token/versions.json
@@ -0,0 +1 @@
+[]
diff --git a/audit/projects/k8s-infra-prow-build-trusted/secrets/snyk-token/description.json b/audit/projects/k8s-infra-prow-build-trusted/secrets/snyk-token/description.json
@@ -0,0 +1,11 @@
+{
+  "createTime": "2021-05-21T18:04:38.236182Z",
+  "etag": "\"15c2db0d6c4886\"",
+  "labels": {
+    "group": "sig-architecture"
+  },
+  "name": "projects/180382678033/secrets/snyk-token",
+  "replication": {
+    "automatic": {}
+  }
+}
diff --git a/audit/projects/k8s-infra-prow-build-trusted/secrets/snyk-token/iam.json b/audit/projects/k8s-infra-prow-build-trusted/secrets/snyk-token/iam.json
@@ -0,0 +1,11 @@
+{
+  "bindings": [
+    {
+      "members": [
+        "group:k8s-infra-prow-oncall@kubernetes.io"
+      ],
+      "role": "roles/secretmanager.admin"
+    }
+  ],
+  "version": 1
+}
diff --git a/audit/projects/k8s-infra-prow-build-trusted/secrets/snyk-token/versions.json b/audit/projects/k8s-infra-prow-build-trusted/secrets/snyk-token/versions.json
@@ -0,0 +1 @@
+[]
diff --git a/audit/projects/kubernetes-public/secrets/recaptcha/description.json b/audit/projects/kubernetes-public/secrets/recaptcha/description.json
@@ -1,8 +1,9 @@
 {
   "createTime": "2020-05-28T03:40:25.639524Z",
-  "etag": "\"15b3ed7b9a9bd9\"",
+  "etag": "\"15c2daf9f9cb32\"",
   "labels": {
-    "app": "slack-infra"
+    "app": "slack-infra",
+    "group": "sig-contributor-experience"
   },
   "name": "projects/127754664067/secrets/recaptcha",
   "replication": {

diff --git a/audit/projects/kubernetes-public/secrets/slack-event-log-config/description.json b/audit/projects/kubernetes-public/secrets/slack-event-log-config/description.json
@@ -1,8 +1,9 @@
 {
   "createTime": "2020-05-28T03:40:22.230224Z",
-  "etag": "\"15b3ed7cfb8003\"",
+  "etag": "\"15c2dafa2a19c5\"",
   "labels": {
-    "app": "slack-infra"
+    "app": "slack-infra",
+    "group": "sig-contributor-experience"
   },
   "name": "projects/127754664067/secrets/slack-event-log-config",
   "replication": {

diff --git a/audit/projects/kubernetes-public/secrets/slack-moderator-config/description.json b/audit/projects/kubernetes-public/secrets/slack-moderator-config/description.json
@@ -1,8 +1,9 @@
 {
   "createTime": "2020-05-28T03:40:18.073437Z",
-  "etag": "\"15b3ed7cc3799a\"",
+  "etag": "\"15c2dafa5c50da\"",
   "labels": {
-    "app": "slack-infra"
+    "app": "slack-infra",
+    "group": "sig-contributor-experience"
   },
   "name": "projects/127754664067/secrets/slack-moderator-config",
   "replication": {

diff --git a/audit/projects/kubernetes-public/secrets/slack-moderator-words-config/description.json b/audit/projects/kubernetes-public/secrets/slack-moderator-words-config/description.json
@@ -1,8 +1,9 @@
 {
   "createTime": "2021-02-23T23:53:36.776896Z",
-  "etag": "\"15bc09a07c3ac0\"",
+  "etag": "\"15c2dafa97e06b\"",
   "labels": {
-    "app": "slack-infra"
+    "app": "slack-infra",
+    "group": "sig-contributor-experience"
   },
   "name": "projects/127754664067/secrets/slack-moderator-words-config",
   "replication": {

diff --git a/audit/projects/kubernetes-public/secrets/slack-welcomer-config/description.json b/audit/projects/kubernetes-public/secrets/slack-welcomer-config/description.json
@@ -1,8 +1,9 @@
 {
   "createTime": "2020-05-28T03:40:14.323185Z",
-  "etag": "\"15b3ed7cf58969\"",
+  "etag": "\"15c2dafac631cd\"",
   "labels": {
-    "app": "slack-infra"
+    "app": "slack-infra",
+    "group": "sig-contributor-experience"
   },
   "name": "projects/127754664067/secrets/slack-welcomer-config",
   "replication": {

diff --git a/audit/projects/kubernetes-public/secrets/slackin-token/description.json b/audit/projects/kubernetes-public/secrets/slackin-token/description.json
@@ -1,8 +1,9 @@
 {
   "createTime": "2020-05-28T03:40:30.811539Z",
-  "etag": "\"15b3ed7c510c5a\"",
+  "etag": "\"15c2dafaf6a3b1\"",
   "labels": {
-    "app": "slack-infra"
+    "app": "slack-infra",
+    "group": "sig-contributor-experience"
   },
   "name": "projects/127754664067/secrets/slackin-token",
   "replication": {

diff --git a/audit/projects/kubernetes-public/secrets/triage-party-github-token/description.json b/audit/projects/kubernetes-public/secrets/triage-party-github-token/description.json
@@ -1,8 +1,9 @@
 {
   "createTime": "2020-06-25T19:14:21.868654Z",
-  "etag": "\"15bc07c702e4bb\"",
+  "etag": "\"15c2dafb274b21\"",
   "labels": {
-    "app": "triage-party"
+    "app": "triageparty-release",
+    "group": "sig-release"
   },
   "name": "projects/127754664067/secrets/triage-party-github-token",
   "replication": {
Original file line number	Diff line number	Diff line change
		@@ -0,0 +1,3 @@
		Bucket Policy Only setting for gs://k8s-infra-ii-sandbox-bb-test:
		Enabled: False

Comment on lines +1 to +3 Copy link Copy Markdown Contributor spiffxp May 24, 2021 Choose a reason for hiding this comment The reason will be displayed to describe this comment to others. Learn more. @BobyMCbobs @hh @bernokl @Riaankl was this manually created?
Original file line number	Diff line number	Diff line change
		@@ -0,0 +1 @@
		gs://k8s-infra-ii-sandbox-bb-test/ has no CORS configuration.