Severity Framework
CCSS (Common Configuration Scoring System) is a set of measures used to determine the severity of the rule.
Snyk CCSS
Rule category
Each rule is associated with a high-level category. For example IAM, Container, Monitoring, Logging, Network, etc.
Logging/ Logging
Is your environment affected by this misconfiguration?
In a few clicks we can analyze your entire application and see what components are vulnerable in your application, and suggest you quick fixes.
Test your applicationsFrameworks
CIS-ControlsCIS-GoogleHIPAAISO-27001NIST-800-53PCI-DSSSOC-2
- Snyk IDSNYK-CC-00438
- creditSnyk Research Team
Description
A Sink with no filter captures all log entries, ensuring comprehensive analysis, troubleshooting, and compliance auditing. It acts as a safety net, preventing valuable logs from being missed, providing a centralized repository for incident investigations.
How to fix?
Remove the filter attribute from at least one project-level logging sink.
Example configuration
resource "google_logging_project_sink" "pubsub_sink" {
name = "example438d1"
destination = "pubsub.googleapis.com/${google_pubsub_topic.aggregated_logs438d1.id}"
}