S3 Bucket Enforce Object Encryption and S3 Bucket Encryption Enforcement plugin fails when Principal is AWS: *

aquasecurity / cloudsploit

Cloud Security Posture Management (CSPM)

https://cloud.aquasec.com/signup

GNU General Public License v3.0

3.3k stars 668 forks source link

S3 Bucket Enforce Object Encryption and S3 Bucket Encryption Enforcement plugin fails when Principal is AWS: * #1725

Open abinash453 opened 11 months ago

abinash453 commented 11 months ago

These 2 plugins fails even when we have s3 bucket policy with principal: AWS: "*" . It only looks for principal:* . I recently observed , this has been fixed for S3 Bucket Encryption In Transit plugin which works for both the cases(AWS:* or *). Can this also be fixed in below 2 plugins to allow principal: AWS: "*" as a valid principal ?

S3 Bucket Encryption Enforcement
S3 Bucket Enforce Object Encryption

alphadev4 commented 9 months ago

Hi @abinash453 can you check now?