Config Rules - lambda-function-public-access-prohibited

A Config rule that checks whether the AWS Lambda function policy attached to the Lambda resource prohibits public access. If the Lambda function policy allows public access it is noncompliant.

Source

AWS Documentation

How-to |CloudFormation |AWS CLI

Items

Size

0.7 KB

YAML/JSON

AWSTemplateFormatVersion: '2010-09-09'
Resources:
  ConfigRule:
    Type: 'AWS::Config::ConfigRule'
    Properties:
      ConfigRuleName: lambda-function-public-access-prohibited
      Description: >-
        A Config rule that checks whether the AWS Lambda function policy
        attached to the Lambda resource prohibits public access. If the Lambda
        function policy allows public access it is noncompliant.
      InputParameters: {}
      Scope:
        ComplianceResourceTypes:
          - 'AWS::Lambda::Function'
      Source:
        Owner: AWS
        SourceIdentifier: LAMBDA_FUNCTION_PUBLIC_ACCESS_PROHIBITED
Parameters: {}
Metadata: {}
Conditions: {}

* Required field

Rule Parameters