Cloud Run Threat Detectionis a built-in service of Security Command Center that continuously monitors the state ofCloud Run resources to detect the most common runtime attacks. IfCloud Run Threat Detection detects an attack, it generates afinding in Security Command Center in near-real time.

Cloud Run Threat Detection's runtime detectors monitor the scanned resources for suspiciousbinaries and libraries and uses natural language processing (NLP) to detectmalicious Bash and Python code. These runtime detectors support onlyCloud Run resources that run on thesecond generation execution environment.If you don't specify an execution environment and use Cloud Run Threat Detection,Cloud Run sets the second generation environment by default foryour resources.

For instructions on how to configure threat detection in your Cloud Runresources, seeUse Cloud Run Threat Detectionin the Security Command Center documentation.