github.com/khulnasoft-lab/defsec@v1.0.5-0.20230827010352-5e9f46893d95/rules/cloud/policies/aws/s3/no_public_buckets.tf.go (about) 1 package s3 2 3 var terraformNoPublicBucketsGoodExamples = []string{ 4 ` 5 resource "aws_s3_bucket" "example" { 6 bucket = "bucket" 7 } 8 9 resource "aws_s3_bucket_public_access_block" "good_example" { 10 bucket = aws_s3_bucket.example.id 11 12 restrict_public_buckets = true 13 } 14 `, 15 } 16 17 var terraformNoPublicBucketsBadExamples = []string{ 18 ` 19 resource "aws_s3_bucket" "example" { 20 bucket = "bucket" 21 } 22 23 resource "aws_s3_bucket_public_access_block" "bad_example" { 24 bucket = aws_s3_bucket.example.id 25 } 26 27 resource "aws_s3_bucket_public_access_block" "bad_example" { 28 bucket = aws_s3_bucket.example.id 29 30 restrict_public_buckets = false 31 } 32 `, 33 } 34 35 var terraformNoPublicBucketsLinks = []string{ 36 `https://registry.terraform.io/providers/hashicorp/aws/latest/docs/resources/s3_bucket_public_access_block#restrict_public_bucketsĀ”`, 37 } 38 39 var terraformNoPublicBucketsRemediationMarkdown = ``