By Implementation

Service Control PoliciesConfig RulesAuto Remediation RulesConformance PacksAmazon GuardDutyAmazon InspectorAWS Security HubAWS Network FirewallRoute53 Resolver SecurityAmazon MacieS3 Bucket PoliciesCloudWatch Alarms and Event RulesAWS WAFAWS Secrets ManagerAWS Systems ManagerSecurity Groups & NACLsAWS KMSIAM PoliciesAmazon ECRRDS Event Subscriptions

By Service Protected

Configuration Packages

Strategy Guides


IAM Policies

AWS CodeCommit: Deny Write Access to Specific Branches in a Repository.

An IAM policy that denies a user the ability to change or push changes to a specific branch in a specific AWS CodeCommit repository.

Premium: 15-minute comprehensive assessment for your AWS Organization and Accounts
Missing Parameters
    "Version": "2012-10-17",
    "Statement": [
            "Action": [
            "Resource": [
            "Effect": "Deny",
            "Condition": {
                "StringEqualsIfExists": {
                    "codecommit:References": [
                "Null": {
                    "codecommit:References": false


Customize Template

Policy Parameters

* Required field