github.com/khulnasoft-lab/defsec@v1.0.5-0.20230827010352-5e9f46893d95/rules/cloud/policies/aws/s3/enable_bucket_encryption.cf.go

github.com/khulnasoft-lab/defsec@v1.0.5-0.20230827010352-5e9f46893d95/rules/cloud/policies/aws/s3/enable_bucket_encryption.cf.go (about)

     1  package s3
     2  
     3  var cloudFormationEnableBucketEncryptionGoodExamples = []string{
     4  	`
     5  Resources:
     6    GoodExample:
     7      Properties:
     8        BucketEncryption:
     9          ServerSideEncryptionConfiguration:
    10            - BucketKeyEnabled: true
    11              ServerSideEncryptionByDefault:
    12                SSEAlgorithm: AES256
    13      Type: AWS::S3::Bucket
    14  `,
    15  }
    16  
    17  var cloudFormationEnableBucketEncryptionBadExamples = []string{
    18  	`---
    19  Resources:
    20    BadExample:
    21      Properties:
    22        BucketEncryption:
    23          ServerSideEncryptionConfiguration:
    24            - BucketKeyEnabled: false
    25              ServerSideEncryptionByDefault:
    26                KMSMasterKeyID: asdf
    27                SSEAlgorithm: asdf
    28      Type: AWS::S3::Bucket
    29  `,
    30  }
    31  
    32  var cloudFormationEnableBucketEncryptionLinks = []string{}
    33  
    34  var cloudFormationEnableBucketEncryptionRemediationMarkdown = ``