AccessDenied for keys that are managed by AWS

[mixua]

I think possible filter for that kind of keys could be an alias that usually contains aws/* or "KeyManager": "AWS", . https://github.com/cloudsploit/scans/blob/36fac15388486d418b53597fb264807e3a6982e1/plugins/aws/kms/kmsKeyRotation.js#L59

[chintanparikh]

Bumping this - we're also running into this issue

[chintanparikh]

Just saw this PR go up - https://github.com/aquasecurity/cloudsploit/pull/651 which aims to solve a similar issue. We are specifically getting it on getKeyRotationStatus but I imagine the fix will be similar