Data protection

S3 bucket with versioning enabled without a lifecycle rule

Description

{AwsS3Bucket} versioning is set to Enable but does not have lifecycle rule configuration. Versioning enables to protect data from overwrites and deletions. Lifecycle rule for an s3 bucket helps optimize security and cost. You can use lifecycle rules to define actions that you want Amazon S3 to take during an object's lifetime (for example, transition objects to another storage class, archive them, or delete them after a specified period of time).
  • Recommended Mitigation

    It is recommended to define lifecycle rule for security and cost optimization purposes.