---
name: gcp-hardening
version: "0.1"
description: >
  [STUB - Not implemented] GCP security hardening with IAM least privilege, VPC security, and Secret Manager.
  PROACTIVELY activate for: [TODO: Define on implementation].
  Triggers: [TODO: Define on implementation]
core-integration:
  techniques:
    primary: ["[TODO]"]
    secondary: []
  contracts:
    input: "[TODO]"
    output: "[TODO]"
  patterns: "[TODO]"
  rubrics: "[TODO]"
---

# GCP Hardening

> **STUB: This skill is not yet implemented**
>
> This placeholder preserves the documented plugin structure.
> See parent plugin README for planned capabilities.

## Planned Capabilities

- **IAM Least Privilege**: Minimal permission grants, service account best practices
- **VPC Security**: Network segmentation, firewall rules, Private Google Access
- **Secret Manager**: Secure credential storage and rotation
- Cloud Armor configuration
- Organization policy constraints
- Security Command Center integration

## Implementation Status

- [ ] Core implementation
- [ ] References documentation
- [ ] Output templates
- [ ] Integration tests