{"id":"wif-one-pool-per-environment","text":"Best practice is one workload identity pool per non-Google Cloud environment (dev, staging, prod).","truth_value":"IN","source":"entries/2026/03/10/iam-workload-identity.md","source_url":"","source_hash":"382498753f9993ff","justifications":[],"dependents":[],"metadata":{},"explanation":{"steps":[{"node":"wif-one-pool-per-environment","truth_value":"IN","reason":"premise"}]}}