For AI agents: A markdown version of this page is available at https://docs.datadoghq.com/security/default_rules/def-000-pgo.md. A documentation index is available at /llms.txt.

Amazon DocumentDB manual cluster snapshots should be private

documentdb

Description

Amazon DocumentDB manual cluster snapshots should not be public. Public snapshots can be restored by any AWS account, potentially exposing sensitive data.

Remediation

Remove public access from your DocumentDB cluster snapshot. For information on sharing Amazon DocumentDB cluster snapshots, see AWS documentation.