class S3BucketPublicReadAclRule
Public Instance Methods
audit_impl(cfn_model)
click to toggle source
# File lib/cfn-nag/custom_rules/S3BucketPublicReadAclRule.rb, line 19 def audit_impl(cfn_model) logical_resource_ids = [] cfn_model.resources_by_type('AWS::S3::Bucket').each do |bucket| logical_resource_ids << bucket.logical_resource_id if bucket.accessControl == 'PublicRead' end logical_resource_ids end
rule_id()
click to toggle source
# File lib/cfn-nag/custom_rules/S3BucketPublicReadAclRule.rb, line 15 def rule_id 'W31' end
rule_text()
click to toggle source
# File lib/cfn-nag/custom_rules/S3BucketPublicReadAclRule.rb, line 7 def rule_text 'S3 Bucket likely should not have a public read acl' end
rule_type()
click to toggle source
# File lib/cfn-nag/custom_rules/S3BucketPublicReadAclRule.rb, line 11 def rule_type Violation::WARNING end