🧠 AWS S3 Access Point is not configured to block public access - prod.logic.yaml🟢

Contextual name: 🧠 prod.logic.yaml🟢
ID: /ce/ca/aws/s3/access-point-block-public-access/prod.logic.yaml
Tags:
- 🟢 Logic test success
- 🟢 Logic with extracts
- 🟢 Logic with test data

Uses

📗 AWS S3 Access Point
🔌 AWS S3 Access Point - object.extracts.yaml
🧪 test-data.json

Test Results 🟢

Generated at: 2025-11-20T13:28:57.583051358Z Open

Result	Id	Condition Index	Condition Text	Runtime Error
🟢	test1	✔️ `199`	✔️ `extract('CA10A1__blockPublicAcls__c') != 'Yes' \|\| extract('CA10A1__blockPublicPolicy__c') != 'Yes' \|\| extract('CA10A1__ignorePublicAcls__c') != 'Yes' \|\| extract('CA10A1__restrictPublicBuckets__c') != 'Yes'`	✔️ `null`
🟢	test2	✔️ `200`	✔️ `otherwise`	✔️ `null`
🟢	test3	✔️ `99`	✔️ `isDisappeared(CA10A1__disappearanceTime__c)`	✔️ `null`

Generation Bundle

	File	MD5
Open	`/ce/ca/aws/s3/access-point-block-public-access/policy.yaml`	`0B75BD4DDC8D0350CE5B49C5F28E1A64`
Open	`/ce/ca/aws/s3/access-point-block-public-access/prod.logic.yaml`	`8870285330D39B89E9AA3AD645D2533D`
Open	`/ce/ca/aws/s3/access-point-block-public-access/test-data.json`	`289C5F24723E2816138A0D18A459AA54`
Open	`/types/CA10A1__CaAwsS3AccessPoint__c/object.extracts.yaml`	`C4AE44407725A35D6C756B35066C74E1`

Available Commands

repo-manager policies generate FULL /ce/ca/aws/s3/access-point-block-public-access/prod.logic.yaml
repo-manager policies generate DEBUG /ce/ca/aws/s3/access-point-block-public-access/prod.logic.yaml
repo-manager policies generate CAPTURE_TEST_DATA /ce/ca/aws/s3/access-point-block-public-access/prod.logic.yaml
repo-manager policies generate TESTS /ce/ca/aws/s3/access-point-block-public-access/prod.logic.yaml
# Execute tests
repo-manager policies test /ce/ca/aws/s3/access-point-block-public-access/prod.logic.yaml

Content

Open File

---
inputType: "CA10A1__CaAwsS3AccessPoint__c"
testData:
  - file: "test-data.json"
importExtracts:
  - file: "/types/CA10A1__CaAwsS3AccessPoint__c/object.extracts.yaml"
conditions:
  - status: "INCOMPLIANT"
    currentStateMessage: "The S3 Access Point is not configured to block public access."
    remediationMessage: "Consider configuring the S3 Access Point to block all public access settings."
    check:
      OR:
        args:
          - NOT_EQUAL:
              left:
                EXTRACT: CA10A1__blockPublicAcls__c
              right:
                TEXT: "Yes"
          - NOT_EQUAL:
              left:
                EXTRACT: CA10A1__blockPublicPolicy__c
              right:
                TEXT: "Yes"
          - NOT_EQUAL:
              left:
                EXTRACT: CA10A1__ignorePublicAcls__c
              right:
                TEXT: "Yes"
          - NOT_EQUAL:
              left:
                EXTRACT: CA10A1__restrictPublicBuckets__c
              right:
                TEXT: "Yes"
otherwise:
  status: "COMPLIANT"
  currentStateMessage: "The S3 Access Point is configured to block all public access."

Uses​

Test Results 🟢​

Generation Bundle​

Available Commands​

Content​

Uses

Test Results 🟢

Generation Bundle

Available Commands

Content