This repository has been archived by the owner on Mar 13, 2023. It is now read-only.
AwsSolutions-IAM5 #4
Comments
Sign up for free
to subscribe to this conversation on GitHub.
Already have an account?
Sign in.
[Error at /MatchmetaStack/Custom::CDKBucketDeployment8693BB64968944B69AAFB0CC9EB8756C/ServiceRole/DefaultPolicy/Resource] AwsSolutions-IAM5[Action::s3:GetBucket*]: The IAM entity contains wildcard permissions and does not have a cdk-nag rule suppression with evidence for those permission. Metadata explaining the evidence (e.g. via supporting links) for wildcard permissions allows for transparency to operators. This is a granular rule that returns individual findings that can be suppressed with 'appliesTo'. The findings are in the format 'Action::' for policy actions and 'Resource::' for resources. Example: appliesTo: ['Action::s3:*'].
The text was updated successfully, but these errors were encountered: