This detection rule identifies when a Google Drive document has been modified to have overly visible access settings. Specifically, it monitors for access events where documents are changed to a visibility level that allows access to anyone with the link (visibility: 'people_with_link'). The rule is triggered when an edit event is detected where the visibility changes to this overly permissible setting. Given that this can result in sensitive information being shared publicly, such modifications should be scrutinized to ensure they align with the organization's data sharing policies. The rule is categorized under GSuite, targeting data repositories and uses GSuite Reports as its primary log type for event detection. The severity of the rule is classified as informational, indicating that while the event is notable, it may not require immediate remediation but does warrant investigation to determine if the visibility change was appropriate.