Restrict public S3 buckets with WRITE permissions

Use this workflow

This workflow looks at all of the public S3 buckets in a given account and restricts those that provide 'WRITE' access. Requires an AWS account with permissions to modify S3 buckets


Relay uses YAML to define the steps in a workflow.


Each step in the workflow is visualized below.

Install the Relay CLI

Relay CLI is an essential companion for authoring and managing workflows. You can install it with a package manager or download it.
brew install puppetlabs/puppet/relay
Learn more about setting up Relay.

How to contribute

We’re excited to see and share in our community’s creation. Take a look at our community overview to learn how to begin contributing to Relay.