Mods

turbot/alicloud_thrifty

1 Star
Overview
15Controls
0Queries
GitHub
ActionTrail Checks
Redundant enabled global ActionTrail trails should be reviewed
Redundant enabled regional ActionTrail trails should be reviewed
ECS Checks
Disks attached to stopped instances should be reviewed
ECS disks with high IOPS should be reviewed
Disks with over 100 GB should be resized if too large
Unattached disks should be removed
ECS instances of type 12xlarge or higher should be reviewed
ECS instances with very low CPU utilization should be reviewed
Long running instances should be reviewed
Snapshots created over 90 days ago should be deleted if not required
OSS Checks
OSS buckets should have lifecycle policies
RDS Checks
Long running RDS DB instances should have billing type as 'Subscription' instead of 'Pay-as-you-go'.
RDS DB instances with fewer than 2 connections per day should be reviewed
VPC Checks
Unused NAT gateways should be deleted
Unattached external IP addresses should be released
On This Page
Description
Usage
Plugins & Tables
SQL
Tags
Get Involved
Edit on GitHub
Discuss on Slack

Control: OSS buckets should have lifecycle policies

Description

Buckets should have a lifecycle policy associated for data retention.

Usage

steampipe check alicloud_thrifty.control.oss_bucket_without_lifecycle_policy

Plugins & Tables

alicloud_oss_bucket
Alibaba Cloud plugin

SQL

select
  arn as resource,
  case
    when lifecycle_rules is null then 'alarm'
    when lifecycle_rules @> '[{"Status":"Enabled"}]' then 'ok'
    else 'alarm'
  end as status,
  case
    when lifecycle_rules is null then title || ' has no lifecycle policy.'
    when lifecycle_rules @> '[{"Status":"Enabled"}]' then title || ' has lifecycle policy.'
    else title || ' has disabled lifecycle policy.'
  end as reason,
  region,
  account_id
from
  alicloud_oss_bucket;

Tags

class = managed
plugin = alicloud
service = oss