aws-s3 v5.32.3 - Encryption in transit control will check only for the relevant encryption in transit condition without explicitly matching on the Sid

Sep 08, 2025
Mods

Bug fixes

  • The AWS > S3 > Bucket > Encryption In Transit control previously required an Encryption in Transit policy statement with the Sid MustBeEncryptedInTransit and the condition "aws:SecureTransport": "false". This sometimes caused the control to incorrectly enter an alarm state when the bucket had the correct condition but a different Sid. The control has been updated to check only for the relevant Encryption in Transit condition, without explicitly requiring the Sid MustBeEncryptedInTransit.