-
Notifications
You must be signed in to change notification settings - Fork 10
Expand file tree
/
Copy path.cfnnag_global_suppress_list
More file actions
32 lines (31 loc) · 971 Bytes
/
.cfnnag_global_suppress_list
File metadata and controls
32 lines (31 loc) · 971 Bytes
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
# Instructions
# ------------
# 1) Add any cfn_nag rules that don't apply to this solution, providing a reason for each item
# 2) Rename this file to .cfnnag_global_suppress_list
# Reference: https://github.com/stelligent/cfn_nag#global-blacklist
---
RulesToSuppress:
- id: W89
reason: Lambda functions in this solution do not need to be deployed in a VPC
- id: W33
reason: Your reason
- id: W58
reason: Your reason
- id: W40
reason: Your reason
- id: W5
reason: Your reason
- id: W60
reason: Your reason
- id: W92
reason: Your reason
- id: W46
reason: ApiGateway V2 should have access logging configured
- id: W10
reason: CloudFront Distribution should enable access logging
- id: W70
reason: Cloudfront should use minimum protocol version TLS 1.2
- id: W78
reason: DynamoDB table should have backup enabled, should be set using PointInTimeRecoveryEnabled
- id: W74
reason: DynamoDB table should have encryption enabled using a CMK stored in KMS