I am trying to find a way to improve our infrastructure as code situation in GCP. My hope was that I could

1. Create a firewall rule whitelist based on target tags that are added by
2. Making target tags part of the deployment yaml config.

My hope was that by adding tags in a deployment I could have it auto apply those tags to any compute resource or load balancer that it creates. That way a firewall rule could be created, by terraform, that applies to those tags.

Am I going about this the wrong way or is there a way to do this? This is as much about automating firewall rule management as it is about cleaning up unnecessary rules that may interfere with operations.