Hi All,
We received notifications that some Gemini versions that we were relying on for Playbooks were going to be deprecated: https://docs.cloud.google.com/gemini-enterprise-agent-platform/models/model-versions. Based on this, we needed to identify the versions that were currently in use within our SecOps environment.
In some cases, e.g. VertexAI, we have a default set which is great if all playbooks use the default, but that didn’t turn out to be the case. The method we used to identify the playbooks/blocks using the soon-to-be-deprecated AI models is as follows:
Process
- Exported all playbook/block definitions from SecOps.
- Extracted the JSON contents into a local folder.
- Ran a Python parser to:
- Search JSON files for Gemini and/or Vertex references.
- Identify affected playbooks.
- Extract configured model IDs from playbook step parameters.
- Generated a list of playbooks using affected Gemini/Vertex models.
Output
-
The scan reports:
-
Playbook name
-
Detection type (Gemini, Vertex, or both)
-
Referenced model IDs (where available)
-
This seemed to be pretty inefficient and I’m certain that there are better ways to do it. Please let me know how you and your team have solved this problem! Also hopefully the Google team can chime in on better ways to do this going forward :)
~ TIA


