Turbot Guardrails Hub 
Hub
  • Mods
  • Policy Packs
  • Docs
  • Home
ModsPolicy PacksDocsHome
Mods
GCP
Loading controls...

Control: GCP > Model Armor > Floor Setting > Settings

Determine whether the GCP Model Armor Floor Setting matches the per-field setting policies under GCP > Model Armor > Floor Setting > Settings > *.

The Floor Setting is a per-project (also folder or organization) singleton config with no delete operation and no age semantics, so it is modeled as a single setting control with three branches of leaf policies: Detection, Responsible AI, and Enforce. The branches mirror the Detections / Responsible AI / Enforcement sections of the Model Armor Console floor settings page.

On Check: Enabled per Floor Setting > Settings > *, the control alarms when any per-field policy is not satisfied by the live Floor Setting. On `Enforce: Enabled per `Floor Setting > Settings > *, the control runs the Set Floor Setting action, which reconciles the live floor up to the per-field set (it never deletes — there is no delete API — and never lowers a stricter live value).

Resource Types

This control targets the following resource types:

  • GCP > Model Armor > Floor Setting

Policies

The following policies can be used to configure this control:

  • GCP > Model Armor > Floor Setting > Settings

This control type relies on these other policies when running actions:

  • GCP > Model Armor > Floor Setting > Settings > Detection > Malicious URL Detection
  • GCP > Model Armor > Floor Setting > Settings > Detection > Prompt Injection and Jailbreak Detection
  • GCP > Model Armor > Floor Setting > Settings > Detection > Sensitive Data Protection
  • GCP > Model Armor > Floor Setting > Settings > Responsible AI > Hate Speech
  • GCP > Model Armor > Floor Setting > Settings > Responsible AI > Dangerous
  • GCP > Model Armor > Floor Setting > Settings > Responsible AI > Sexually Explicit
  • GCP > Model Armor > Floor Setting > Settings > Responsible AI > Harassment
  • GCP > Model Armor > Floor Setting > Settings > Enforce > Template Create and Update
  • GCP > Model Armor > Floor Setting > Settings > Enforce > Google Managed MCP Servers
  • GCP > Model Armor > Floor Setting > Settings > Enforce > Agent Platform

Permissions

Cloud permissions used by this control and its actions:

  • modelarmor.floorSettings.update

Category

  • Security

In Your Workspace

  • Controls by Resource report
  • Controls by Control Type report

Developers

    Control Type URI
    • tmod:@turbot/gcp-modelarmor#/control/types/floorSettingSettings
    • Category URI
    • tmod:@turbot/turbot#/control/categories/security
    • GraphQL
    • query controlType(id: "tmod:@turbot/gcp-modelarmor#/control/types/floorSettingSettings") { … }
    • query controls(filter: "controlTypeId:'tmod:@turbot/gcp-modelarmor#/control/types/floorSettingSettings'") { … }
    • CLI
    • Get Controls
    • turbot graphql controls --filter "controlTypeId:tmod:@turbot/gcp-modelarmor#/control/types/floorSettingSettings"
Guardrails
Guardrails Hub
  • Hub
  • Docs
  • Blog
  • Changelog
Products
  • GuardrailsGuardrails
  • PipesPipes
  • SteampipeSteampipe
  • PowerpipePowerpipe
  • FlowpipeFlowpipe
  • TailpipeTailpipe
Turbot
  • Home
  • About us
  • We're hiring!
  • Contact us
Community

Our community of practitioners love to discuss cloud governance & security.

Slack logoJoin us on Slack →

System StatusLegalSecurity
Terms of UseSecurityPrivacy
39
Mods
151
Resource Types
2,578
Policies
1,245
Controls
118
Quick Actions
89
IAM