Buckets are the basic containers that hold your data. Everything that you store in Cloud Storage must be contained in a bucket. We have added support for another entity for GCP. For more information on GCP Buckets click here

GSL Query Examples

1. Bucket should have logging enabled

StorageBucket should have logging

2. Ensure that Cloud Storage bucket is not anonymously and/or publicly accessible

StorageBucket should not have iamPolicy with [ bindings contain [ members contain-any [ $ in ( 'allUsers', ' allAuthenticatedUsers ' ) ] ] ]

3. Ensure that there are no publicly accessible objects in storage buckets

StorageBucket should not have acl with [ entity contain-any [ 'allUsers' ] ]