Data protection

Storage Bucket publicly visible

Risk Level

Hazardous (3)

  • N/A

Compliance Frameworks


A bucket is a logical container for storing objects. It is associated with a single compartment that has policies that determine what action a user can perform on a bucket and on all the objects in the bucket. It was detected that Storage Bucket {OciStorageBucket.Name} is publicly visible. A bucket with public visibility allows anonymous and unauthenticated users to access data stored in the bucket. Removing unfettered reading of objects in a bucket reduces an organization's exposure to data loss.
  • Recommended Mitigation

    It is recommended to enable private visibility for the bucket.