By using the new visibility: signed argument to s3.put we can prevent unauthenticated Evergreen users from downloading our corpus files. This will allow us to make them more accessible to authenticated users, and stop using a private bucket.