The GCP Cloud SQL security scan on Vectrix detects a variety of Cloud SQL security issues in a connected GCP organization or project that could be leaving you vulnerable. This includes database misconfigurations, disabled backups, and other security issues.
Scan on-demand to detect active Cloud SQL security issues that you have.
Monitor continuously to get alerted about new Cloud SQL security issues in the future.
Don't know how Cloud SQL work? Read more below.
What this scan detects
Disabled automated backups
Disabled automated backups can be problematic as in the event of a database instance being deleted - whether intentionally or unintentionally - it can leave users without a way to restore the information stored in the instance.
Disabled SSL/TLS requirement
When the Cloud SQL SSL/TLS requirement is not enabled, clients without a valid certificate are still allowed to connect to the Cloud SQL instance.
Data Access audit logs not enabled
A database instance with Data Access audit logs not enabled could be problematic as any modifications or improper access would not be recorded for later review.