Gcp Iam

Handles IAM policy and role management for Google Cloud resources. You'll reach for this when setting up service accounts, configuring workload identity federation, or auditing permissions across projects. The skill leans on the official Google Cloud Python client libraries for execution while providing architecture guidance on access patterns and security best practices. It's narrowly scoped to identity and access control, so pair it with other GCP skills for full infrastructure work. The documentation points you straight to IAM best practices and workload identity federation guides, which is helpful since GCP's permission model gets complicated fast once you move beyond basic roles.