Merge pull request #474 from bridgecrewio/feature/handle_get_bucket_policy_error

Feature/handle get bucket policy error

checks/check_extra764

@@ -36,11 +36,16 @@ extra764(){
       fi
 
       # https://aws.amazon.com/premiumsupport/knowledge-center/s3-bucket-policy-for-config-rule/
-      CHECK_BUCKET_STP_POLICY_PRESENT=$(cat $TEMP_STP_POLICY_FILE | jq --arg arn "arn:aws:s3:::${bucket}" '.Statement[]|select(((.Principal|type == "string") and .Principal == "*") and .Action=="s3:*" and (.Resource|type == "array") and (.Resource|map({(.):0})[]|has($arn)) and (.Resource|map({(.):0})[]|has($arn+"/*")) and .Condition.Bool."aws:SecureTransport" == "false")')
-      if [[ $CHECK_BUCKET_STP_POLICY_PRESENT ]]; then
-        textPass "Bucket $bucket has S3 bucket policy to deny requests over insecure transport"
+      # checking if $TEMP_STP_POLICY_FILE is a valid json before converting it to json with jq
+      if jq -e . >/dev/null 2>&1 <<< "$TEMP_STP_POLICY_FILE"; then
+        CHECK_BUCKET_STP_POLICY_PRESENT=$(cat $TEMP_STP_POLICY_FILE | jq --arg arn "arn:aws:s3:::${bucket}" '.Statement[]|select(((.Principal|type == "string") and .Principal == "*") and .Action=="s3:*" and (.Resource|type == "array") and (.Resource|map({(.):0})[]|has($arn)) and (.Resource|map({(.):0})[]|has($arn+"/*")) and .Condition.Bool."aws:SecureTransport" == "false")')
+        if [[ $CHECK_BUCKET_STP_POLICY_PRESENT ]]; then
+          textPass "Bucket $bucket has S3 bucket policy to deny requests over insecure transport"
+        else
+          textFail "Bucket $bucket allows requests over insecure transport"
+        fi
       else
-        textFail "Bucket $bucket allows requests over insecure transport"
+          textInfo "Unknown Error occurred: $TEMP_STP_POLICY_FILE"
       fi
 
       rm -fr $TEMP_STP_POLICY_FILE