github.com/khulnasoft-lab/defsec@v1.0.5-0.20230827010352-5e9f46893d95/rules/cloud/policies/aws/cloudtrail/require_bucket_access_logging.cf.go

github.com/khulnasoft-lab/defsec@v1.0.5-0.20230827010352-5e9f46893d95/rules/cloud/policies/aws/cloudtrail/require_bucket_access_logging.cf.go (about)

     1  package cloudtrail
     2  
     3  var cloudFormationBucketAccessLoggingRequiredGoodExamples = []string{
     4  	`---
     5  Resources:
     6    GoodExampleTrail:
     7      Type: AWS::CloudTrail::Trail
     8      Properties:
     9        IsLogging: true
    10        S3BucketName: "my-bucket"
    11        TrailName: "Cloudtrail"
    12    GoodExampleBucket:
    13      Type: AWS::S3::Bucket
    14      Properties:
    15        BucketName: "my-bucket"
    16        LoggingConfiguration:
    17          DestinationBucketName: logging-bucket
    18          LogFilePrefix: accesslogs/
    19  `,
    20  }
    21  
    22  var cloudFormationBucketAccessLoggingRequiredBadExamples = []string{
    23  	`---
    24  Resources:
    25    BadExampleTrail:
    26      Type: AWS::CloudTrail::Trail
    27      Properties:
    28        IsLogging: true
    29        S3BucketName: "my-bucket"
    30        TrailName: "Cloudtrail"
    31    BadExampleBucket:
    32      Type: AWS::S3::Bucket
    33      Properties:
    34        BucketName: "my-bucket"
    35  `,
    36  }
    37  
    38  var cloudFormationBucketAccessLoggingRequiredLinks = []string{}
    39  
    40  var cloudFormationBucketAccessLoggingRequiredRemediationMarkdown = ``