OCI Object Storage Bucket has object Versioning disabled

Description

This policy identifies the OCI Object Storage buckets that are not configured with a Object Versioning. It is recommended that Object Storage buckets should be configured with Object Versioning to minimize data loss because of inadvertent deletes by an authorized user or malicious deletes.

Code Example

resource "oci_objectstorage_bucket" "pass" {
  ...

  versioning = "Enabled"
}

Remediation

OCI Console*

. Login to the OCI Console

. Type the resource reported in the alert into the Search box at the top of the Console.

. Click the resource reported in the alert from the Resources submenu

. Next to Object Versioning, click Edit.

. In the dialog box, Clink Enable Versioing (to enable). === Fix - Buildtime

Terraform

Resource: oci_objectstorage_bucket
Arguments: versioning

Rule Details

Field	Value
ID	IAC-1235
Severity	LOW
IaC Type	Terraform
Frameworks	Terraform, TerraformPlan
Checkov ID	CKV_OCI_8

References

Checkov Rule

Overview

SAST (Application Security)

SCA (Dependencies)

Secrets Detection

IaC Security

License Compliance

SAST Rules

IaC Rules

License Rules

OCI Object Storage Bucket has object Versioning disabled

Description

Code Example

Remediation

Rule Details

References

SAST Rules

IaC Rules

License Rules

OCI Object Storage Bucket has object Versioning disabled ​

Description ​

Code Example ​

Remediation ​

Rule Details ​

References ​

OCI Object Storage Bucket has object Versioning disabled

Description

Code Example

Remediation

Rule Details

References