疑似Oday
Ensure that your Google Compute Engine instances are configured to ignore GCP project-wide (shared) public SSH keys and use instance-level SSH keys instead. Project-wide SSH keys can be used to log in to all the VM instances running inside a GCP project. While project-wide SSH keys can ease SSH key management, if compromised, they pose a security risk which can impact all VM instances within the project.
id: gcloud-vm-project-ssh-keys-enabled
info:
name: Block Project-Wide SSH Keys Not Enabled
auth
...