Kevin Formsma

This is also causing us issues. Merging the related pull request would be great.

Thanks for the detailed report @chrisoverzero . The way that cfn_nag models the transformation for `AWS::Serverless` is somewhat static. We'll review and update as appropriate.

@mongoDynamo Not currently, metadata on the serverless resource will currently pass through some of the generated resources(https://github.com/stelligent/cfn-model/pull/84), but I don't think it will work for the ones warning in this...

Hi, thanks for the recommendations! We would be happy to review PRs for proposed rule additions. Some feedback on your specific rules below. Preference would be for different PRs per...

Hi @strannik19 , I was unable to reproduce this error on Ubuntu 20 LTS. It looks like you are missing native libs for installing the ruby components. Can could try...

@foobar123-del Thanks for the question. Currently resolving and scanning nested template resources is not supported. I would recommend scanning the nested template files directly.

@stile1201 Thanks for the detailed feedback. I agree with your assessment, for this use case the policy you have is in-line with recommendations per AWS documentation. Evaluating the effective permissions...

Hi @Slooz , thanks for reporting. I think the correct action in this case would be `ecr:GetAuthorizationToken` For W12, it current doesn't do any filtering based on the actions presented....

Hi, can you share more details about the failing template or a minimal example template that reproduces this issue? Thanks!

@arangamani Is there a possibility of this being accepted and a new release provided?