Skip to main content

Now announcing the inaugural Code Remix Summit – in Miami May 12th-14th. Use the code MODERNE3VIP for an additional $300 off.

GitHub Slack Discord Moderne

OpenRewrite by Moderne | Large Scale Automated Refactoring
Running Recipes
Authoring Recipes
Recipe catalog
Reference
Concepts & explanations
Changelog
Licensing

Recipe catalog
Terraform
GCP

GCP

Composite Recipes

Recipes that include further recipes, often including the individual recipes below.

Best practices for GCP
Ensure secure boot for shielded GKE nodes is enabled
Ensure the GKE metadata server is enabled

Recipes

Enable PodSecurityPolicy controller on Google Kubernetes Engine (GKE) clusters
Enable VPC Flow Logs for subnetworks
Enable VPC flow logs and intranode visibility
Ensure GCP Kubernetes cluster node auto-repair configuration is enabled
Ensure GCP Kubernetes engine clusters have legacy compute engine metadata endpoints disabled
Ensure GCP VM instances have block project-wide SSH keys feature enabled
Ensure GCP cloud storage bucket with uniform bucket-level access are enabled
Ensure IP forwarding on instances is disabled
Ensure binary authorization is used
Ensure compute instances launch with shielded VM enabled
Ensure private cluster is enabled when creating Kubernetes clusters
Ensure shielded GKE nodes are enabled

Set Azure Storage Account default network access to deny

Enable PodSecurityPolicy controller on Google Kubernetes Engine (GKE) clusters

Composite Recipes
Recipes

© Moderne, 2025