Use this skill to collect GCP AI and workload inventory as schema-valid
agent-bom inventory. Default to discover-only: write JSON to an
operator-selected path and stop.
or bearer tokens.
is the evidence.
python examples/operator_pull/gcp_inventory_adapter.py \
--project "$GOOGLE_CLOUD_PROJECT" \
--region us-central1 \
--source gcp-skill-invoked \
--discovery-method skill_invoked_pull \
--output gcp-inventory.json
Scan only when the operator asks for findings:
agent-bom agents --inventory gcp-inventory.json --format json --output agent-bom-gcp-findings.json
The emitted inventory carries `discovery_provenance.source_type:
skill_invoked_pull, observed_via: skill_invoked_pull, gcp_sdk`, sanitized
metadata.permissions_used, and redacted credential material. If schema
validation fails, stop and fix the inventory instead of scanning a best-effort
summary.
共 6 个版本