Aqua CSPM

Storage Bucket All Users Policy

Quick Info

Plugin TitleStorage Bucket All Users Policy
CloudGOOGLE
CategoryStorage
DescriptionEnsures Storage bucket policies do not allow global write, delete, or read permissions
More InfoStorage buckets can be configured to allow the global principal to access the bucket via the bucket policy. This policy should be restricted only to known users or accounts.
GOOGLE Linkhttps://cloud.google.com/storage/docs/access-control/iam
Recommended ActionEnsure that each storage bucket is configured so that no member is set to allUsers or allAuthenticatedUsers.

Detailed Remediation Steps