💼 1.12 Ensure API keys are not created for a project
- Contextual name: 💼 1.12 Ensure API keys are not created for a project
- ID:
/frameworks/cis-gcp-v1.1.0/01/12 - Located in: 💼 1 Identity and Access Management
Description​
Keys are insecure because they can be viewed publicly, such as from within a browser, or they can be accessed on a device where the key resides. It is recommended to use standard authentication flow instead.
Similar​
- Internal
- ID:
dec-c-2969ef57
- ID:
Sub Sections​
| Section | Sub Sections | Internal Rules | Policies | Flags |
|---|