OSS Bucket Policy No Outside Organization Access
ID: rule:aliyun:oss-bucket-policy-outside-organization-check
Severity: high
Description
Ensures OSS bucket policies do not grant access to principals outside of the organization.
Reason for Violation
Granting access to external principals can lead to data leaks outside the organization's control.
Recommendation
Ensure all principals in the bucket policy are within the authorized organization.
Resource Types
ALIYUN::OSS::Bucket