S3 buckets used for storing metadata like data schema does not follow Control Tower enforced policies as they are the best recommendations documented by AWS -
For e.g. the buckets don't have the following -
There's no versioning enabled.
No logging policy is applied.
This discrepancy between AWS's recommended deployment practices with Amplify Gen 2 vs the Control Tower's enforced policies
Environment information
Description
S3 buckets used for storing metadata like data schema does not follow Control Tower enforced policies as they are the best recommendations documented by AWS -
For e.g. the buckets don't have the following -
This discrepancy between AWS's recommended deployment practices with Amplify Gen 2 vs the Control Tower's enforced policies
https://docs.aws.amazon.com/controltower/latest/controlreference/s3-rules.html
Same as Gen1 FR - https://github.com/aws-amplify/amplify-cli/issues/13617