gcloud alpha terraform vet - validate that a terraform plan complies with policies
gcloud alpha terraform vet TERRAFORM_PLAN_JSON --policy-library=POLICY_LIBRARY [--region=REGION] [--zone=ZONE] [GCLOUD_WIDE_FLAG ...]
(ALPHA) Validate that a terraform plan complies with policies.
To validate that a terraform plan complies with a policy library at /my/policy/library:
$ gcloud alpha terraform vet tfplan.json \ --policy-library=/my/policy/library
- TERRAFORM_PLAN_JSON
File which contains a JSON export of a terraform plan. This file will be validated against the given policy library.
- --policy-library=POLICY_LIBRARY
Directory which contains a policy library
- --region=REGION
Default region to use for resources that do not have one set
- --zone=ZONE
Default zone to use for resources that do not have one set
These flags are available to all commands: --access-token-file, --account, --billing-project, --configuration, --flags-file, --flatten, --format, --help, --impersonate-service-account, --log-http, --project, --quiet, --trace-token, --user-output-enabled, --verbosity.
Run $ gcloud help for details.
This command is currently in alpha and might change without notice. If this command fails with API permission errors despite specifying the correct project, you might be trying to access an API with an invitation-only early access allowlist. This variant is also available:
$ gcloud beta terraform vet