Skip to main content

OSS Bucket Policy No Outside Organization Access

ID: rule:aliyun:oss-bucket-policy-outside-organization-check
Severity: high
IaC Types: ROS, Terraform

Description

Ensures OSS bucket policy does not grant access to principals outside the organization.

Reason for Violation

The OSS bucket policy grants access to wildcard principal which may include outside organization.

Recommendation

Replace wildcard Principal '*' with specific account IDs in the bucket policy.

Resource Types

ROS: ALIYUN::OSS::Bucket
Terraform: alicloud_oss_bucket

Description
Reason for Violation
Recommendation
Resource Types