A Config rule that checks if an AWS CodeBuild project environment has at least one log option enabled. The rule is NON_COMPLIANT if 'logsConfig' is not present or the status of all present log configurations is set to 'DISABLED'.

This config rule supports the following parameters:

  • s3BucketNames
    • Required: No
    • Type: String
    • Description:Comma-separated list of Amazon S3 bucket names that logs should be sent to if S3 logs are configured.
  • cloudWatchGroupNames
    • Required: No
    • Type: String
    • Description:Comma-separated list of Amazon CloudWatch log group names that logs should be be sent to if CloudWatch logs are configured.

ConfigRule
AWS::Config::ConfigRule


Scope

ComplianceResourceTypes

Source *
CustomPolicyDetails
SourceDetails

CloudFormation Template

Share Template