Bucket Without Versioning

  • Query id: 227c2f58-70c6-4432-8e9a-a89c1a548cf5
  • Query name: Bucket Without Versioning
  • Platform: GoogleDeploymentManager
  • Severity: Medium
  • Category: Observability
  • CWE: 280
  • URL: Github

Description

Bucket should have versioning enabled
Documentation

Code samples

Code samples with security vulnerabilities

Positive test num. 1 - yaml file
resources:
  - name: bucket
    type: storage.v1.bucket
    properties:
      name: my-bucket
Positive test num. 2 - yaml file
resources:
  - name: bucket
    type: storage.v1.bucket
    properties:
      name: my-bucket
      versioning:
        enabled: false

Code samples without security vulnerabilities

Negative test num. 1 - yaml file
resources:
  - name: bucket
    type: storage.v1.bucket
    properties:
      name: my-bucket
      versioning:
        enabled: true