in templates/util.js [608:685]
exports.cfnNag = function(rules) {
suppressed_rules = {
"W11": {
"id": "W11",
"reason": "This IAM role requires to have * resource on its permission policy"
},
"W12": {
"id": "W12",
"reason": "Lambda needs the following minimum required permissions to send trace data to X-Ray"
},
"W13": {
"id": "W13",
"reason": "This IAM policy requires to have * resource"
},
"W35": {
"id": "W35",
"reason": "Access logging is not required for this Bucket."
},
"W47": {
"id": "W47",
"reason": "This SNS Topic does not need KmsMasterKeyId property."
},
"W57": {
"id": "W57",
"reason": "This IdentityPool has proper restrictions for unauthenticated users"
},
"W59": {
"id": "W59",
"reason": "This ApiGateway Method does not need authorization setup"
},
"W64": {
"id": "W64",
"reason": "This apiGateway stage does not require to be associated with a usage plan"
},
"W69": {
"id": "W69",
"reason": "This apiGateway stage does not require to have access logging"
},
"W74": {
"id": "W74",
"reason": "This DynamoDB table does not require CMK encryption store in KMS"
},
"W76": {
"id": "W76",
"reason": "This role is required to have high SPCM"
},
"W78": {
"id": "W78",
"reason": "This DynamoDB table does not require to have backup enabled"
},
"W89": {
"id": "W89",
"reason": "This Lambda Function is not required to be inside VPC"
},
"W92": {
"id": "W92",
"reason": "This lambda function does not require to have ReservedConcurrentExecutions"
},
"F3": {
"id": "F3",
"reason": "This role policy is required to have * action in its policy"
},
"F5": {
"id": "F5",
"reason": "This role policy is required to have * action in its policy"
},
"F38": {
"id": "F38",
"reason": "This role policy is required to have * action in its policy with PassRole action"
},
};
return {
"cfn_nag": {
"rules_to_suppress": rules.map((rule) => suppressed_rules[rule])
}
};
};