Crawls your GCP Organization and returns service accounts that have not been used in the past 90 days based on GCP Recommender Service Account Insight findings.
- python 3.x
- GCP Recommender API (enabled in your project)
- To enable:
gcloud services enable recommender.googleapis.com
- To enable:
# Clone the repo locally
git clone [email protected]:ScaleSec/gcp_sa_lister.git
# Configure virtual environment
python3 -m venv ./venv/
source ./venv/bin/activate
# Install packages
pip3 install -r requirements.txtpython3 saUnused.pyThe results will be in JSON format and include the service account email and project number.
You need to have the Recommender service (API) enabled across your projects with insights preexisting. For directions on enabling the API visit the documentation.