github.com/khulnasoft-lab/defsec@v1.0.5-0.20230827010352-5e9f46893d95/rules/cloud/policies/aws/s3/no_public_access_with_acl.tf.go

github.com/khulnasoft-lab/defsec@v1.0.5-0.20230827010352-5e9f46893d95/rules/cloud/policies/aws/s3/no_public_access_with_acl.tf.go (about)

     1  package s3
     2  
     3  var terraformNoPublicAccessWithAclGoodExamples = []string{
     4  	`
     5  resource "aws_s3_bucket" "good_example" {
     6  	acl = "private"
     7  }
     8  `, `
     9  resource "aws_s3_bucket" "example" {
    10    bucket = "yournamehere"
    11  }
    12  
    13  resource "aws_s3_bucket_acl" "example" {
    14    bucket = aws_s3_bucket.example.id
    15    acl    = "private"
    16  }`,
    17  }
    18  
    19  var terraformNoPublicAccessWithAclBadExamples = []string{
    20  	`
    21  resource "aws_s3_bucket" "bad_example" {
    22  	acl = "public-read"
    23  }
    24  `, `
    25  resource "aws_s3_bucket" "example" {
    26    bucket = "yournamehere"
    27  }
    28  
    29  resource "aws_s3_bucket_acl" "example" {
    30    bucket = aws_s3_bucket.example.id
    31    acl    = "authenticated-read"
    32  }`,
    33  }
    34  
    35  var terraformNoPublicAccessWithAclLinks = []string{
    36  	`https://registry.terraform.io/providers/hashicorp/aws/latest/docs/resources/s3_bucket`,
    37  }
    38  
    39  var terraformNoPublicAccessWithAclRemediationMarkdown = ``