Cloud Storage | Develop with Palo Alto Networks

Skip to main content

Sample GCP Cloud Storage RQL Queries

note

The following guide will walk you through GCP Cloud Storage RQL Examples

List storage buckets set to "private" with object ACLs set to "public"

config from cloud.resource where cloud.type = 'gcp' AND api.name = 'gcloud-storage-buckets-list' AND json.rule = 'iam.bindings[*] size greater than 0 and iam.bindings[*].members[*] any equal allUsers and acl[*].entity contains "allUsers"'

List storage buckets not located in EU region

config from cloud.resource where api.name = 'gcloud-storage-buckets-list' AND json.rule =  location does not contain eu and location does not contain EU

Sample GCP Cloud Storage RQL Queries
- List storage buckets set to "private" with object ACLs set to "public"
- List storage buckets not located in EU region