Logging and monitoring

S3 Bucket Object-Level Logging for Write Events is Disabled


S3 object-level API operations such as GetObject, DeleteObject, and PutObject are called data events. By default, CloudTrail trails don't log data events and so it is recommended to enable Object-level logging for S3 buckets.
  • Recommended Mitigation

    Turn on Object-level logging for {AwsS3Bucket}