https://avd.aquasec.com/misconfig/aws/s3/cloudtrail-bucket-delete-policy/