The IAM Privilege Catalogservices / Google Cloud / namespaces
Datastore mode enables multi-tenancy using namespaces. Namespaces are only for organizing data and are not security boundaries.
Information of namespaces has minimal impact without access to the data in the namespace, although in a misconfigured system using client names as namespaces leads to client enumeration.
datastore.namespaces.list
Risks
Scope: LOW
This privilege allows access to data that are not meant to be public, but are otherwise not sensitive.
Links
Contributed by P0 Security
© 2023–present P0 Security and contributors to the IAM Privilege Catalog