Network misconfigurations

Cloud function without HTTPS Trigger

Risk Level

Hazardous (3)

Platform(s)
Compliance Frameworks

Description

GCP cloud function {GcpCloudFunction} was detected running without HTTPS trigger, allowing unauthenticated invocation by default.
  • Recommended Mitigation

    Enable HTTPS trigger on the GCP cloud function.