// the find
jetstack/terraform-google-gke-cluster
A Terraform module to create a best-practise Google Kubernetes Engine (GKE) cluster.
A Terraform module for creating opinionated GKE clusters with security-focused defaults baked in. Aimed at teams that want a starting point that disables dangerous defaults like basic auth and client certificates. Deprecated since early 2022 in favor of Google's official terraform-google-kubernetes-engine module.
- Sensible fixed defaults that actually matter: disables basic auth, client certs, legacy endpoints, and the Kubernetes dashboard out of the box without requiring the user to know about them
- Node service account follows least-privilege pattern with only logging/monitoring roles rather than the default over-permissive compute scope
- Ships with a working example project including Cloud NAT, which covers the non-obvious private node networking gap
- Explicitly deprecated and frozen at v0.3 with no future releases — this is a dead end for anyone starting a new project today
- Last push was February 2022, meaning it's missing two-plus years of GKE API changes, new node features, and security recommendations like Shielded Nodes and Workload Identity improvements
- Only 162 stars and the deprecation notice points to Google's module, which has 1000+ stars and active maintenance — no compelling reason to pick this over that
- No automated tests beyond a basic verify script; the example directory doubles as the only integration test, which makes trusting the module on non-trivial configurations a leap of faith