github.com/khulnasoft-lab/defsec@v1.0.5-0.20230827010352-5e9f46893d95/rules/cloud/policies/google/storage/enable_ubla.tf.go (about)

     1  package storage
     2  
     3  var terraformEnableUblaGoodExamples = []string{
     4  	`
     5   resource "google_storage_bucket" "static-site" {
     6   	name          = "image-store.com"
     7   	location      = "EU"
     8   	force_destroy = true
     9   	
    10   	uniform_bucket_level_access = true
    11   	
    12   	website {
    13   		main_page_suffix = "index.html"
    14   		not_found_page   = "404.html"
    15   	}
    16   	cors {
    17   		origin          = ["http://image-store.com"]
    18   		method          = ["GET", "HEAD", "PUT", "POST", "DELETE"]
    19   		response_header = ["*"]
    20   		max_age_seconds = 3600
    21   	}
    22   }
    23   `,
    24  }
    25  
    26  var terraformEnableUblaBadExamples = []string{
    27  	`
    28   resource "google_storage_bucket" "static-site" {
    29   	name          = "image-store.com"
    30   	location      = "EU"
    31   	force_destroy = true
    32   	
    33   	uniform_bucket_level_access = false
    34   	
    35   	website {
    36   		main_page_suffix = "index.html"
    37   		not_found_page   = "404.html"
    38   	}
    39   	cors {
    40   		origin          = ["http://image-store.com"]
    41   		method          = ["GET", "HEAD", "PUT", "POST", "DELETE"]
    42   		response_header = ["*"]
    43   		max_age_seconds = 3600
    44   	}
    45   }
    46   `,
    47  }
    48  
    49  var terraformEnableUblaLinks = []string{
    50  	`https://registry.terraform.io/providers/hashicorp/google/latest/docs/resources/storage_bucket#uniform_bucket_level_access`,
    51  }
    52  
    53  var terraformEnableUblaRemediationMarkdown = ``