You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
HIGH: Public access block does not ignore public ACLs
════════════════════════════════════════════════════════════════════════════════════════════════════════════════════════════════════════════════════════════════════════════════════════════════════════════════════════════════════════════════════════
S3 buckets should ignore public ACLs on buckets and any objects they contain. By ignoring rather than blocking, PUT calls with public ACLs will still be applied but the ACL will be ignored.
See https://avd.aquasec.com/misconfig/avd-aws-0091
simar7
changed the title
Inline filtering doesn't work anymore for avd-aws-0091
bug(misconf): Inline filtering doesn't work anymore for avd-aws-0091
May 17, 2024
Discussed in #6685
Originally posted by RobinFrcd May 14, 2024
Description
Hi,
I just switched from tfsec to trivy.
I used to ignore checks like this:
Desired Behavior
Should not raise
HIGH: Public access block does not ignore public ACLs
Actual Behavior
It raises
HIGH: Public access block does not ignore public ACLs
, the only way to correctly filter the alert is to put the comment before the resource.This one doesn't raise the alert.
Reproduction Steps
Target
AWS
Scanner
Misconfiguration
Output Format
None
Mode
None
Debug Output
Operating System
Ubuntu 22.04
Version
Checklist
trivy image --reset
The text was updated successfully, but these errors were encountered: