Control: S3 buckets access control lists (ACLs) should not be used to manage user access to buckets

This control is from a mod dependency: