Skip to content

add(control): Logging controls #831

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Open
wants to merge 3 commits into
base: main
Choose a base branch
from

Conversation

gabriellavengeo
Copy link
Contributor

No description provided.

@gabriellavengeo gabriellavengeo requested a review from a team as a code owner July 16, 2025 10:15
Copy link

netlify bot commented Jul 16, 2025

Deploy Preview for common-cloud-controls ready!

Name Link
🔨 Latest commit 875486e
🔍 Latest deploy log https://app.netlify.com/projects/common-cloud-controls/deploys/687e3f395e69630008fc6d33
😎 Deploy Preview https://deploy-preview-831--common-cloud-controls.netlify.app
📱 Preview on mobile
Toggle QR Code...

QR Code

Use your smartphone camera to open QR code link.

To edit notification comments on pull requests, go to your Netlify project configuration.

Copy link
Contributor

@zigmax zigmax left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Minor comments. Thanks for your contribution. :)

- id: CCC.Logging.C03
title: Enable Object Lock On Log Bucket
objective: |
Ensure log immutability by enabling object lock on log buckets to prevent
Copy link
Contributor

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Ensure log immutability by enabling Write Once, Read Many (WORM) protection using object lock on log storage buckets. This prevents logs from being modified or deleted during the defined retention period, supporting compliance and forensic integrity.

- id: CCC.Logging.C05
title: Ensure Log Bucket is Not Publicly Accessible
objective: |
Ensure that log storage buckets are not publicly accessible to prevent unauthorized
Copy link
Contributor

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Ensure that log storage buckets are not publicly accessible to prevent unauthorized access to sensitive log data. In addition, logs should be replicated to another cloud region to enhance availability, durability, and support disaster recovery requirements.

@gabriellavengeo
Copy link
Contributor Author

Thank you for the review @zigmax, I have pushed an update applying your suggestions

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Labels
None yet
Projects
None yet
Development

Successfully merging this pull request may close these issues.

2 participants