Description
Two runs ScoutSuite v4.0.3 using an organisation ID and the project ID where the logging sink resides returned no results for logging sinks under the Management->Stack Driver Logging dashboard, which is incorrect as there is one.
Confirmation there is a logging sink:
gcloud logging sinks list --organization=999999999
NAME DESTINATION FILTER
mysink pubsub.googleapis.com/projects/logging-project-215613/topics/mytopic logName:logs/cloudaudit.googleapis.com%2Factivity
Using organisation ID:
Scout.py --provider gcp --organization-id 999999999 --exceptions ../gcp-audit/ --report-dir ../gcp-audit/ --user-account
Using the project ID where the sink is:
Scout.py --provider gcp --project-id logging-project-215613 --exceptions ../gcp-logging-project-audit/ --report-dir ../gcp-logging-project-audit/ --user-account`
No exceptions are reported although now I realise I should have specified a file rather than directory.