services / Google Cloud / Cloud functions operations

Operations represent long-running cloud functions API calls. They are used for create, delete, and update operations on cloud functions.

The operation includes the data returned from the API call the operation is associated with. This means that viewing an operation includes access to view function metadata, and contains the same risks as get and list operations directly on functions.


cloudfunctions.​operations.​list

See notes for functions.get

Risks

Scope: CRITICAL

This privilege may grant access to sensitive data from a significant fraction of organizational functions, allow interruption of critical organizational services, or its exploit could lead to significant privilege escalation.

Links

  • https:​/​/​cloud.​google.​com/​functions/​docs/​reference/​iam/​permissions
  • https:​/​/​cloud.​google.​com/​functions/​docs/​reference/​rest/​v2/​projects.​locations.​operations
  • Contributed by P0 Security

    © 2023–present P0 Security and contributors to the IAM Privilege Catalog