GRC Store

Search / finos-ccc/ccc.objstor.th / v2026.06-rc3

Release · v2026.06-rc3

FINOS-CCC/CCC.ObjStor.TH Threat Catalog

FINOS-CCC/CCC.ObjStor.TH

Threats for Object Storage technologies, as defined by the FINOS Common Cloud Controls project.

Published by FINOS Common Cloud Controls

Install

OCI v1.1
$grcli unpack --repository finos-ccc/ccc.objstor.th --tag v2026.06-rc3
Coordinate
oci.grc.store/finos-ccc/ccc.objstor.th:v2026.06-rc3
Manifest digest
sha256:8d52a7d21ddfc64b849cb1c6d04c762e0c0b76a167d014e4dd4381466f8b3d8c

Provenance

1 layer
Digest Media type Size
f62ace69f3f4… application/vnd.gemara.artifact.v1+yaml 2.8 KiB
Bundle config blob 
{
  "bundle-version": "1.0",
  "gemara-version": "v1.2.0",
  "metadata": {
    "provenance": {
      "buildDefinition": {
        "buildType": "https://grc.store/grcli/buildtype/v0",
        "externalParameters": {
          "artifact": {
            "id": "CCC.ObjStor.TH",
            "type": "ThreatCatalog"
          },
          "target": {
            "registry": "oci.grc.store",
            "repository": "finos-ccc/ccc.objstor.th",
            "tag": "v2026.06-rc3"
          }
        },
        "internalParameters": {
          "CI": "true",
          "GITHUB_ACTIONS": "true",
          "GITHUB_ACTOR": "eddie-knight",
          "GITHUB_REF": "refs/heads/main",
          "GITHUB_REPOSITORY": "eddie-knight/common-cloud-controls",
          "GITHUB_RUN_ATTEMPT": "2",
          "GITHUB_RUN_ID": "26768391088",
          "GITHUB_SHA": "24594e28430c12318cacffe7fdda6a3ea272d975",
          "GITHUB_WORKFLOW": "Batch Release All Catalogs",
          "RUNNER_OS": "Linux"
        },
        "resolvedDependencies": [
          {
            "name": "artifacts/storage/object/threats.yaml",
            "uri": "file://artifacts/storage/object/threats.yaml",
            "digest": {
              "sha256": "f62ace69f3f430f141eead7217cc0cfaa6dd11c65f40ec40d25a85c6fe2c6f1e"
            }
          },
          {
            "name": "source",
            "uri": "git+https://github.com/eddie-knight/common-cloud-controls@24594e28430c12318cacffe7fdda6a3ea272d975",
            "digest": {
              "gitCommit": "24594e28430c12318cacffe7fdda6a3ea272d975"
            }
          }
        ]
      },
      "runDetails": {
        "builder": {
          "id": "https://github.com/eddie-knight/common-cloud-controls/actions/runs/26768391088",
          "version": {
            "go": "go1.25.0",
            "go-arch": "amd64",
            "go-os": "linux",
            "grcli": "v0.2.2"
          }
        },
        "metadata": {
          "invocationId": "26768391088-2",
          "startedOn": "2026-06-01T16:45:43.267774386Z",
          "finishedOn": "2026-06-01T16:45:43.374415492Z"
        },
        "byproducts": [
          {
            "name": "threats.yaml",
            "digest": {
              "sha256": "f62ace69f3f430f141eead7217cc0cfaa6dd11c65f40ec40d25a85c6fe2c6f1e"
            }
          }
        ]
      }
    }
  },
  "artifacts": [
    {
      "name": "threats.yaml",
      "type": "ThreatCatalog",
      "id": "CCC.ObjStor.TH",
      "role": "artifact"
    }
  ]
}

CCC Object Storage Threats

Threats for Object Storage technologies, as defined by the FINOS Common Cloud Controls project.

ID
CCC.ObjStor.TH
Version
v2026.06-rc3
Gemara version
v1.2.0
Author
FINOS Common Cloud Controls

Data Resilience

The Data Resilience group covers entries related to ensuring data availability, integrity, and sovereignty across its lifecycle. This includes replication, backup, recovery, region restrictions, and protection against data loss or corruption.

  1. CCC.ObjStor.TH01 Data Exfiltration via Insecure Lifecycle Policies

    Misconfigured lifecycle policies may unintentionally allow data to be exfiltrated or destroyed prematurely, resulting in a loss of availability and potential exposure of sensitive data.

    Capabilities
    • CCC.ObjStor.Capabilities
      • CCC.ObjStor.CP08
    • CCC.Core.Capabilities
      • CCC.Core.CP11