Checks/Aws/Test-CodebuildProjectS3LogsEncrypted.ps1
|
function Test-CodebuildProjectS3LogsEncrypted { <# .SYNOPSIS CodeBuild project S3 logs are encrypted at rest .DESCRIPTION **CodeBuild projects** with **S3 log delivery** are evaluated for **encryption at rest** on their S3 log objects. Only projects that write logs to S3 are in scope. .PARAMETER Check CIEMCheck object containing check metadata. #> [CmdletBinding()] [OutputType([PSCustomObject[]])] param( [Parameter(Mandatory)] [CIEMCheck]$Check ) $ErrorActionPreference = 'Stop' # TODO: Implement check logic based on Prowler check: codebuild_project_s3_logs_encrypted [CIEMScanResult]::Create($Check, 'MANUAL', 'This check requires manual implementation. See Prowler check codebuild_project_s3_logs_encrypted for reference.', 'N/A', 'codebuild Resources') } |