def authenticate_on_subscribe

def authenticate_on_subscribe_compliant()

in src/python/detectors/sns_unauthenticated_unsubscribe/sns_unauthenticated_unsubscribe.py [0:0]

17 lines of code
5 McCabe index (conditional complexity)


def authenticate_on_subscribe_compliant(self, event) -> None:
    import boto3
    subscriptions_failed = 0
    for record in event["Records"]:
        message = record["body"]
        if message["Type"] == "SubscriptionConfirmation":
            try:
                topic_arn = message["TopicArn"]
                token = message["Token"]
                sns_client = boto3.client("sns",
                                          region_name=topic_arn.split(":")[3])
                # Compliant: sets the 'AuthenticateOnUnsubscribe' argument to
                # 'True' while confirming an SNS subscription.
                sns_client.confirm_subscription(
                    TopicArn=topic_arn,
                    Token=token,
                    AuthenticateOnUnsubscribe='True')
            except Exception:
                subscriptions_failed += 1