Description

To lower the organization's attack surface, SQL databases should not have public IPs. Private IPs provide improved network security and lower latency for your application.

• 

  Recommended Mitigation

  Remove instance public IP and assign a private IP instead. To prevent new SQL instances from getting configured with public IP addresses, set up a Restrict Public IP access on Cloud SQL instances Organization policy at: https://console.cloud.google.com/iam-admin/orgpolicies/sql-restrictPublicIp.