turbot/aws_compliance

Query: s3_bucket_default_encryption_enabled

Usage

powerpipe query aws_compliance.query.s3_bucket_default_encryption_enabled

Steampipe Tables

SQL

select
arn as resource,
case
when server_side_encryption_configuration is not null then 'ok'
else 'alarm'
end status,
case
when server_side_encryption_configuration is not null then name || ' default encryption enabled.'
else name || ' default encryption disabled.'
end reason,
region,
account_id
from
aws_s3_bucket;

Controls

The query is being used by the following controls: