GCP storage bucket is logging to itself

Description

A check to ensure that the specified logging bucket is not itself. A bucket must not log access to itself, logging requires a second separate bucket.

Code Example

resource "google_storage_bucket" "mylovelybucket" {
  name     = "mylovelybucket"
  location = var.location
  uniform_bucket_level_access = true
  logging {
    log_bucket = "mylovelybucket"
    }
}

Remediation

Terraform

Resource: google_storage_bucket This check will trigger if you attempt to self reference:

Rule Details

Field	Value
ID	IAC-0922
Severity	INFO
IaC Type	Terraform
Frameworks	Terraform, TerraformPlan
Checkov ID	CKV_GCP_63

References

Checkov Rule

Overview

SAST (Application Security)

SCA (Dependencies)

Secrets Detection

IaC Security

License Compliance

SAST Rules

IaC Rules

License Rules

GCP storage bucket is logging to itself

Description

Code Example

Remediation

Rule Details

References

SAST Rules

IaC Rules

License Rules

GCP storage bucket is logging to itself ​

Description ​

Code Example ​

Remediation ​

Rule Details ​

References ​

GCP storage bucket is logging to itself

Description

Code Example

Remediation

Rule Details

References