Query: AWS S3 permissions granted to other AWS accounts in bucket policies should be restricted

Description

This control checks whether the S3 bucket policy prevents principals from other AWS accounts from performing denied actions on resources in the S3 bucket.

Query

Tables used in this query:

• aws_s3_bucket

Controls using this query:

• 6 Amazon S3 permissions granted to other AWS accounts in bucket policies should be restricted
• AWS S3 permissions granted to other AWS accounts in bucket policies should be restricted

SQL