AWS > CloudTrail >

Object Lock Enabled

MEDIUM

Source

CloudSploit

object-lock-enabled

management console

Object Lock Enabled

Ensures that AWS CloudTrail S3 buckets use Object Lock for data protection and regulatory compliance.

CloudTrail buckets should be configured to have object lock enabled. You can use it to prevent an object from being deleted or overwritten for a fixed amount of time or indefinitely.

Recommended Actions

Edit trail to use a bucket with object locking enabled.

Links

https://docs.aws.amazon.com/AmazonS3/latest/dev/object-lock-managing.html

Aqua Container Security

Aqua Security is the largest pure-play cloud native security company, providing customers the freedom to innovate and run their businesses with minimal friction. The Aqua Cloud Native Security Platform provides prevention, detection, and response automation across the entire application lifecycle to secure the build, secure cloud infrastructure and secure running workloads wherever they are deployed.