diff --git a/fast/addons/2-networking-test/data/instances/server-0.yaml b/fast/addons/2-networking-test/data/instances/server-0.yaml index c9d2191cc..bc01bda93 100644 --- a/fast/addons/2-networking-test/data/instances/server-0.yaml +++ b/fast/addons/2-networking-test/data/instances/server-0.yaml @@ -21,4 +21,4 @@ project_id: dev-spoke-0 service_account: server-0 subnet_id: primary/default image: projects/cos-cloud/global/images/family/cos-stable -user_data_file: assets/server-nginx-cloud-config.yaml \ No newline at end of file +user_data_file: assets/server-nginx-cloud-config.yaml diff --git a/fast/addons/2-networking-test/data/service-accounts/client-0.yaml b/fast/addons/2-networking-test/data/service-accounts/client-0.yaml index f6a79c8cb..7835af0b2 100644 --- a/fast/addons/2-networking-test/data/service-accounts/client-0.yaml +++ b/fast/addons/2-networking-test/data/service-accounts/client-0.yaml @@ -17,4 +17,4 @@ # file name can be overridden via 'name' property if needed # name: client-0 project_id: dev-spoke-0 -display_name: Test client instances service account. \ No newline at end of file +display_name: Test client instances service account. diff --git a/fast/addons/2-networking-test/data/service-accounts/server-0.yaml b/fast/addons/2-networking-test/data/service-accounts/server-0.yaml index 573311380..151f4cc47 100644 --- a/fast/addons/2-networking-test/data/service-accounts/server-0.yaml +++ b/fast/addons/2-networking-test/data/service-accounts/server-0.yaml @@ -17,4 +17,4 @@ # file name can be overridden via 'name' property if needed # name: server-0 project_id: dev-spoke-0 -display_name: Test server instances service account. \ No newline at end of file +display_name: Test server instances service account. diff --git a/fast/project-templates/os-apt-registries/project.yaml b/fast/project-templates/os-apt-registries/project.yaml index 649fa8a08..a6c18cb04 100644 --- a/fast/project-templates/os-apt-registries/project.yaml +++ b/fast/project-templates/os-apt-registries/project.yaml @@ -42,4 +42,4 @@ iam: - prod-os-apt-0/rw # TODO: add instance service accounts that need access to the registries # roles/artifactregistry.writer: - # - serviceAccount:foo@bar \ No newline at end of file + # - serviceAccount:foo@bar diff --git a/fast/stages/0-org-setup/data/billing-accounts/default.yaml b/fast/stages/0-org-setup/data/billing-accounts/default.yaml index d42747cfb..e89b0620f 100644 --- a/fast/stages/0-org-setup/data/billing-accounts/default.yaml +++ b/fast/stages/0-org-setup/data/billing-accounts/default.yaml @@ -43,4 +43,4 @@ iam_bindings_additive: # test: # description: Test sink # destination: $project_ids:log-0 -# type: project \ No newline at end of file +# type: project diff --git a/fast/stages/0-org-setup/data/folders/data-platform/prod/.config.yaml b/fast/stages/0-org-setup/data/folders/data-platform/prod/.config.yaml index 763d6916c..8d66556cf 100644 --- a/fast/stages/0-org-setup/data/folders/data-platform/prod/.config.yaml +++ b/fast/stages/0-org-setup/data/folders/data-platform/prod/.config.yaml @@ -16,4 +16,4 @@ name: Production tag_bindings: - environment: $tag_values:environment/production \ No newline at end of file + environment: $tag_values:environment/production diff --git a/fast/stages/0-org-setup/data/folders/networking/.config.yaml b/fast/stages/0-org-setup/data/folders/networking/.config.yaml index 03ab7a8e1..247764a21 100644 --- a/fast/stages/0-org-setup/data/folders/networking/.config.yaml +++ b/fast/stages/0-org-setup/data/folders/networking/.config.yaml @@ -59,4 +59,4 @@ iam_bindings: api.getAttribute('iam.googleapis.com/modifiedGrantsByRole', []).hasOnly([ 'roles/compute.networkUser', 'roles/composer.sharedVpcAgent', 'roles/container.hostServiceAgentUser', 'roles/vpcaccess.user' - ]) \ No newline at end of file + ]) diff --git a/fast/stages/0-org-setup/data/folders/networking/prod/.config.yaml b/fast/stages/0-org-setup/data/folders/networking/prod/.config.yaml index 763d6916c..8d66556cf 100644 --- a/fast/stages/0-org-setup/data/folders/networking/prod/.config.yaml +++ b/fast/stages/0-org-setup/data/folders/networking/prod/.config.yaml @@ -16,4 +16,4 @@ name: Production tag_bindings: - environment: $tag_values:environment/production \ No newline at end of file + environment: $tag_values:environment/production diff --git a/fast/stages/0-org-setup/data/folders/security/.config.yaml b/fast/stages/0-org-setup/data/folders/security/.config.yaml index 60519f037..469fde984 100644 --- a/fast/stages/0-org-setup/data/folders/security/.config.yaml +++ b/fast/stages/0-org-setup/data/folders/security/.config.yaml @@ -41,4 +41,4 @@ iam_bindings: expression: | api.getAttribute('iam.googleapis.com/modifiedGrantsByRole', []).hasOnly([ 'roles/cloudkms.cryptoKeyEncrypterDecrypter' - ]) \ No newline at end of file + ]) diff --git a/fast/stages/0-org-setup/data/folders/teams/.config.yaml b/fast/stages/0-org-setup/data/folders/teams/.config.yaml index 86503b775..dfab2e5eb 100644 --- a/fast/stages/0-org-setup/data/folders/teams/.config.yaml +++ b/fast/stages/0-org-setup/data/folders/teams/.config.yaml @@ -27,4 +27,4 @@ iam_by_principals: - roles/resourcemanager.folderViewer - roles/resourcemanager.tagViewer tag_bindings: - context: $tag_values:context/project-factory \ No newline at end of file + context: $tag_values:context/project-factory diff --git a/fast/stages/0-org-setup/data/organization/org-policies/compute.yaml b/fast/stages/0-org-setup/data/organization/org-policies/compute.yaml index 96ea5d0c0..c3e8de73f 100644 --- a/fast/stages/0-org-setup/data/organization/org-policies/compute.yaml +++ b/fast/stages/0-org-setup/data/organization/org-policies/compute.yaml @@ -20,7 +20,7 @@ compute.disableGuestAttributesAccess: rules: - - enforce: true + - enforce: true compute.disableInternetNetworkEndpointGroup: rules: @@ -40,17 +40,17 @@ compute.disableVpcExternalIpv6: compute.requireOsLogin: rules: - - enforce: true + - enforce: true compute.restrictLoadBalancerCreationForTypes: rules: - - allow: - values: - - in:INTERNAL + - allow: + values: + - in:INTERNAL compute.skipDefaultNetworkCreation: rules: - - enforce: true + - enforce: true compute.setNewProjectDefaultToZonalDNSOnly: rules: @@ -61,35 +61,35 @@ compute.trustedImageProjects: rules: - allow: values: - - "is:projects/centos-cloud" - - "is:projects/cos-cloud" - - "is:projects/debian-cloud" - - "is:projects/fedora-cloud" - - "is:projects/fedora-coreos-cloud" - - "is:projects/opensuse-cloud" - - "is:projects/rhel-cloud" - - "is:projects/rhel-sap-cloud" - - "is:projects/rocky-linux-cloud" - - "is:projects/suse-cloud" - - "is:projects/suse-sap-cloud" - - "is:projects/ubuntu-os-cloud" - - "is:projects/ubuntu-os-pro-cloud" - - "is:projects/windows-cloud" - - "is:projects/windows-sql-cloud" - - "is:projects/confidential-vm-images" - - "is:projects/confidential-space-images" - - "is:projects/backupdr-images" - - "is:projects/deeplearning-platform-release" - - "is:projects/serverless-vpc-access-images" - - "is:projects/gke-node-images" - - "is:projects/gke-windows-node-images" - - "is:projects/ubuntu-os-gke-cloud" + - "is:projects/centos-cloud" + - "is:projects/cos-cloud" + - "is:projects/debian-cloud" + - "is:projects/fedora-cloud" + - "is:projects/fedora-coreos-cloud" + - "is:projects/opensuse-cloud" + - "is:projects/rhel-cloud" + - "is:projects/rhel-sap-cloud" + - "is:projects/rocky-linux-cloud" + - "is:projects/suse-cloud" + - "is:projects/suse-sap-cloud" + - "is:projects/ubuntu-os-cloud" + - "is:projects/ubuntu-os-pro-cloud" + - "is:projects/windows-cloud" + - "is:projects/windows-sql-cloud" + - "is:projects/confidential-vm-images" + - "is:projects/confidential-space-images" + - "is:projects/backupdr-images" + - "is:projects/deeplearning-platform-release" + - "is:projects/serverless-vpc-access-images" + - "is:projects/gke-node-images" + - "is:projects/gke-windows-node-images" + - "is:projects/ubuntu-os-gke-cloud" compute.vmExternalIpAccess: rules: - - deny: - all: true + - deny: + all: true # compute.disableInternetNetworkEndpointGroup: # rules: @@ -112,9 +112,9 @@ compute.vmExternalIpAccess: compute.restrictProtocolForwardingCreationForTypes: rules: - - allow: - values: - - is:INTERNAL + - allow: + values: + - is:INTERNAL # compute.restrictSharedVpcHostProjects: # rules: diff --git a/fast/stages/0-org-setup/data/projects/core/billing-0.yaml b/fast/stages/0-org-setup/data/projects/core/billing-0.yaml index e419b3f28..78ed0b56e 100644 --- a/fast/stages/0-org-setup/data/projects/core/billing-0.yaml +++ b/fast/stages/0-org-setup/data/projects/core/billing-0.yaml @@ -19,11 +19,11 @@ iam_by_principals: $iam_principals:service_accounts/iac-0/iac-org-ro: - roles/viewer $iam_principals:service_accounts/iac-0/iac-org-rw: - - roles/owner + - roles/owner services: - bigquery.googleapis.com - bigquerydatatransfer.googleapis.com - storage.googleapis.com datasets: billing_export: - friendly_name: Billing export \ No newline at end of file + friendly_name: Billing export diff --git a/fast/stages/2-networking-a-simple/data/subnets/dev/dev-dataplatform.yaml b/fast/stages/2-networking-a-simple/data/subnets/dev/dev-dataplatform.yaml index 13508658e..76ace5082 100644 --- a/fast/stages/2-networking-a-simple/data/subnets/dev/dev-dataplatform.yaml +++ b/fast/stages/2-networking-a-simple/data/subnets/dev/dev-dataplatform.yaml @@ -7,7 +7,7 @@ region: $regions:primary description: Default subnet for dev Data Platform ip_cidr_range: 10.68.2.0/24 secondary_ip_ranges: - pods: + pods: ip_cidr_range: 100.69.0.0/16 services: ip_cidr_range: 100.71.2.0/24 diff --git a/fast/stages/2-project-factory/data/defaults.yaml b/fast/stages/2-project-factory/data/defaults.yaml index 542f75161..9b9b4f59a 100644 --- a/fast/stages/2-project-factory/data/defaults.yaml +++ b/fast/stages/2-project-factory/data/defaults.yaml @@ -30,4 +30,4 @@ projects: # context: # iam_principals: -# foo: group:foo@example.com \ No newline at end of file +# foo: group:foo@example.com diff --git a/fast/stages/2-project-factory/data/folders/team-a/prod/.config.yaml b/fast/stages/2-project-factory/data/folders/team-a/prod/.config.yaml index 09a87c7c8..4b0b318d4 100644 --- a/fast/stages/2-project-factory/data/folders/team-a/prod/.config.yaml +++ b/fast/stages/2-project-factory/data/folders/team-a/prod/.config.yaml @@ -16,4 +16,4 @@ name: Production tag_bindings: - environment: $tag_values:environment/production \ No newline at end of file + environment: $tag_values:environment/production diff --git a/fast/stages/2-project-factory/data/projects/prod-app-a-0.yaml b/fast/stages/2-project-factory/data/projects/prod-app-a-0.yaml index 45b1ee8c3..50df7cc98 100644 --- a/fast/stages/2-project-factory/data/projects/prod-app-a-0.yaml +++ b/fast/stages/2-project-factory/data/projects/prod-app-a-0.yaml @@ -18,4 +18,4 @@ parent: $folder_ids:team-a/prod shared_vpc_service_config: host_project: $project_ids:prod-spoke-0 # network_users: - # - group:team-a-admins@example.com \ No newline at end of file + # - group:team-a-admins@example.com diff --git a/fast/stages/2-security/data/certificate-authorities/prod-ca-0.yaml b/fast/stages/2-security/data/certificate-authorities/prod-ca-0.yaml index b30b6b6dd..724bd8f13 100644 --- a/fast/stages/2-security/data/certificate-authorities/prod-ca-0.yaml +++ b/fast/stages/2-security/data/certificate-authorities/prod-ca-0.yaml @@ -20,5 +20,3 @@ ca_pool_config: create_pool: {} ca_configs: prod-ca-0-0: {} - - diff --git a/fast/stages/2-security/data/defaults.yaml b/fast/stages/2-security/data/defaults.yaml index ecf913d2c..356a3f2aa 100644 --- a/fast/stages/2-security/data/defaults.yaml +++ b/fast/stages/2-security/data/defaults.yaml @@ -20,4 +20,4 @@ context: secondary: europe-west3 projects: defaults: - storage_location: eu \ No newline at end of file + storage_location: eu diff --git a/fast/stages/2-security/data/folders/prod/.config.yaml b/fast/stages/2-security/data/folders/prod/.config.yaml index 5c09cdc93..3dc1b6a76 100644 --- a/fast/stages/2-security/data/folders/prod/.config.yaml +++ b/fast/stages/2-security/data/folders/prod/.config.yaml @@ -17,4 +17,4 @@ name: Production parent: $folder_ids:security tag_bindings: - environment: $tag_values:environment/production \ No newline at end of file + environment: $tag_values:environment/production diff --git a/fast/stages/3-secops-dev/data/secops_reference_lists.yaml b/fast/stages/3-secops-dev/data/secops_reference_lists.yaml index c59ec64bb..9885b215f 100644 --- a/fast/stages/3-secops-dev/data/secops_reference_lists.yaml +++ b/fast/stages/3-secops-dev/data/secops_reference_lists.yaml @@ -14,4 +14,4 @@ private_ip_addresses: description: "Private CIDR ranges" - type: CIDR # either CIDR, STRING, REGEX + type: CIDR # either CIDR, STRING, REGEX diff --git a/fast/stages/3-secops-dev/data/secops_rules.yaml b/fast/stages/3-secops-dev/data/secops_rules.yaml index 4afc35633..531a92bc5 100644 --- a/fast/stages/3-secops-dev/data/secops_rules.yaml +++ b/fast/stages/3-secops-dev/data/secops_rules.yaml @@ -1,4 +1,3 @@ - # Copyright 2025 Google LLC # # Licensed under the Apache License, Version 2.0 (the "License"); @@ -17,4 +16,4 @@ network_traffic_to_specific_country: enabled: true alerting: true archived: false - run_frequency: "LIVE" \ No newline at end of file + run_frequency: "LIVE"