GCP CIS benchmark - "Nothing to collect"

[MichalMarchewka]

Hello,

After triggering the CIS compliance check nothing is being retrieved. I am passing the path to the config file. It doesn't matter which switch was used ("cis","cis","cis2"). The console output is multiple "Skipped plugin (...)" then "Nothing to collect".

Command used: ./index.js --config ./config.js --compliance=cis

output.txt

[eihwaz-kob]

Hi there,

It seems that cis,cis1,cis2 are not included in the compliance parameter for the google plugins. Also i notice that the current plugins for GCP(all of them) are the CIS Cloud for GCP, but the old version of it, so if you want the compliance cis parameter to work, you need to include it in the plugins code.

I hope it helps.

Regards

[Rahulsharma0810]

@eihwaz-kob Can you elaborate more, I am also trying to get the CIS findings.

[eihwaz-kob]

@Rahulsharma0810 The thing is that at the code level of each gcp plugin, it contains a parameter for the complaince values. For gcp the cis compliance is not set because all the gcp plugins are set in base of the Google cloud platform CIS but the old version.

In case that you want to specify cis1 or cis2 you need to set this values your self at the plugin code.

I hope that helps, if not i can try to explain in an other way. My english isn't so good, sorry.

Regards

[Rahulsharma0810]

I got it, Thanks. I think a PR is needed to update all with v1.2

[anshubansal2000]

I am trying to find all compliance policies set but not able to do that. Can someone pls point me where are all compliance policies listed?