Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Retention policies should be configured using bucket lock on log buckets #105

Open
brettcurtis opened this issue Mar 29, 2024 · 1 comment
Open

Retention policies should be configured using bucket lock on log buckets #105

brettcurtis opened this issue Mar 29, 2024 · 1 comment

Comments

@brettcurtis
Copy link
Contributor

brettcurtis commented Mar 29, 2024
edited
Loading

Enabling retention policies on log buckets protects logs stored in cloud storage buckets from being overwritten or accidentally deleted. It is recommended that you set up retention policies and configure Bucket Lock on all storage buckets used as log sinks.

The _Default bucket isn't used, but let's see if we can lock it anyway. This bucket is created in every project. We'd need to import the bucket into the state before locking it.
@brettcurtis brettcurtis self-assigned this May 4, 2024
@brettcurtis brettcurtis moved this from Todo 🗒 to Blocked ⛔ in 🔨 Open Source Infrastructure (as Code) May 4, 2024
@brettcurtis
Copy link
Contributor Author

We can't do this in the child module yet: hashicorp/terraform#33474

@brettcurtis brettcurtis removed their assignment Sep 15, 2024
@ghost ghost removed the security label Sep 22, 2024
@ghost ghost removed the security label Oct 19, 2024
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
None yet
Projects
🔨 Open Source Infrastructure (as Code)
Status: Blocked 🚧
Milestone
No milestone
Development

No branches or pull requests
1 participant
@brettcurtis