The Rego needs to changed to not-implemented. The baseline requirement:
What it checks: ensure that the following is set to enabled
Maybe enabling GCP sharing options is a prereq to sharing the logs, but simply hitting "enabled" won't automatically send all your logs to your centralized SEIM. That would require an extra step, depending on what the agency is using as their SEIM.
🐛 Summary
The Rego needs to changed to not-implemented. The baseline requirement:
What it checks: ensure that the following is set to enabled
Maybe enabling GCP sharing options is a prereq to sharing the logs, but simply hitting "enabled" won't automatically send all your logs to your centralized SEIM. That would require an extra step, depending on what the agency is using as their SEIM.
To reproduce
N/A
Expected behavior
Not implemented