Skip to content

fix: AWS foundational security controls for S3.8 query reference#13065

Merged
kodiakhq[bot] merged 5 commits intomainfrom
candiduslynx-patch-2
Aug 15, 2023
Merged

fix: AWS foundational security controls for S3.8 query reference#13065
kodiakhq[bot] merged 5 commits intomainfrom
candiduslynx-patch-2

Conversation

@candiduslynx
Copy link
Copy Markdown
Contributor

@candiduslynx candiduslynx commented Aug 15, 2023

Closes #13064

@cq-bot cq-bot added the aws label Aug 15, 2023
@candiduslynx candiduslynx added the automerge Automatically merge once required checks pass label Aug 15, 2023
@candiduslynx candiduslynx mentioned this pull request Aug 15, 2023
Closed
2 tasks
@cq-bot cq-bot added the website label Aug 15, 2023
@candiduslynx candiduslynx requested a review from ronsh12 August 15, 2023 07:51
@candiduslynx candiduslynx removed the automerge Automatically merge once required checks pass label Aug 15, 2023
jsonpr
jsonpr suggested changes Aug 15, 2023
View reviewed changes
Copy link
Copy Markdown
Contributor

@jsonpr jsonpr left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Good update. Let's keep the control consistent with Foundational Security Best Practices Naming. In this case, S3 Block Public Access setting should be enabled at the bucket-level

That will require a change to https://github.com/cloudquery/cloudquery/blob/main/plugins/source/aws/policies/queries/s3/bucket_level_public_access_blocks.sql

@candiduslynx candiduslynx requested a review from jsonpr August 15, 2023 17:33
@candiduslynx candiduslynx added the automerge Automatically merge once required checks pass label Aug 15, 2023
@jsonpr jsonpr added the policy label Aug 15, 2023
@kodiakhq kodiakhq bot merged commit 7cde3d2 into main Aug 15, 2023
@kodiakhq kodiakhq bot deleted the candiduslynx-patch-2 branch August 15, 2023 21:31
@cq-bot cq-bot mentioned this pull request Aug 15, 2023
Merged
kodiakhq bot pushed a commit that referenced this pull request Aug 21, 2023
@cq-bot
chore(main): Release plugins-source-aws v22.7.0 (#13144)
819f8d6 
🤖 I have created a release *beep* *boop*
---


## [22.7.0](plugins-source-aws-v22.6.0...plugins-source-aws-v22.7.0) (2023-08-21)


### Features

* Instantiate services at sync time rather than during init phase of sync ([#13059](#13059)) ([99e6889](99e6889))


### Bug Fixes

* AWS foundational security controls for S3.8 query reference ([#13065](#13065)) ([7cde3d2](7cde3d2)), closes [#13064](#13064)
* **deps:** Update AWS modules ([#13246](#13246)) ([49ee475](49ee475))
* **deps:** Update github.com/cloudquery/arrow/go/v13 digest to 5b83d4f ([#13203](#13203)) ([b0a4b8c](b0a4b8c))
* **deps:** Update module github.com/cloudquery/plugin-sdk/v4 to v4.5.1 ([#13195](#13195)) ([a184c37](a184c37))
* Panic while fetching `aws_codecommit_repositories` ([#13223](#13223)) ([4d9bcc1](4d9bcc1))
* Remove unused query ([#13152](#13152)) ([f050699](f050699))

---
This PR was generated with [Release Please](https://github.com/googleapis/release-please). See [documentation](https://github.com/googleapis/release-please#release-please).
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@hermanschaaf hermanschaaf Awaiting requested review from hermanschaaf

@yevgenypats yevgenypats Awaiting requested review from yevgenypats

@ronsh12 ronsh12 Awaiting requested review from ronsh12

1 more reviewer

@jsonpr jsonpr jsonpr approved these changes

Reviewers whose approvals may not affect merge requirements

Assignees

No one assigned

Labels

automerge Automatically merge once required checks pass

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

bug: duplication in AWS foundational security controls for S3

3 participants

@candiduslynx @jsonpr @cq-bot