github.com/khulnasoft-lab/defsec@v1.0.5-0.20230827010352-5e9f46893d95/rules/cloud/policies/aws/s3/ignore_public_acls.tf.go

github.com/khulnasoft-lab/defsec@v1.0.5-0.20230827010352-5e9f46893d95/rules/cloud/policies/aws/s3/ignore_public_acls.tf.go (about)

     1  package s3
     2  
     3  var terraformIgnorePublicAclsGoodExamples = []string{
     4  	`
     5  resource "aws_s3_bucket" "example" {
     6  	bucket = "bucket"
     7  }
     8  
     9   resource "aws_s3_bucket_public_access_block" "good_example" {
    10   	bucket = aws_s3_bucket.example.id
    11     
    12   	ignore_public_acls = true
    13   }
    14   `,
    15  }
    16  
    17  var terraformIgnorePublicAclsBadExamples = []string{
    18  	`
    19  resource "aws_s3_bucket" "example" {
    20  	bucket = "bucket"
    21  }
    22  
    23  
    24   resource "aws_s3_bucket_public_access_block" "bad_example" {
    25   	bucket = aws_s3_bucket.example.id
    26   }
    27   
    28   resource "aws_s3_bucket_public_access_block" "bad_example" {
    29   	bucket = aws_s3_bucket.example.id
    30     
    31   	ignore_public_acls = false
    32   }
    33   `,
    34  }
    35  
    36  var terraformIgnorePublicAclsLinks = []string{
    37  	`https://registry.terraform.io/providers/hashicorp/aws/latest/docs/resources/s3_bucket_public_access_block#ignore_public_acls`,
    38  }
    39  
    40  var terraformIgnorePublicAclsRemediationMarkdown = ``