AWS Lambda

Overview
Critical
0
High
0
Medium
9
Low
0
Informational
0
Security issues (9)
Severity Non-Compliance Region Resource Issue Remediation Read more Action
Medium us-east-1 test-collector Lambda function encrypts the environment variables at rest with an encryption key "aws/lambda", which is not a recommended KMS customer-managed key, but an AWS default key. Make sure the environment variables are protected with a KMS customer-managed key. If you store sensitive data in the environment variables, use AWS Secrets Manager instead. More info
Medium us-east-1 test-collector Lambda function has no access to VPC-only resources. Configuring your Lambda function to access resources in a VPC. More info
Medium us-east-1 test-scanner Lambda function encrypts the environment variables at rest with an encryption key "aws/lambda", which is not a recommended KMS customer-managed key, but an AWS default key. Make sure the environment variables are protected with a KMS customer-managed key. If you store sensitive data in the environment variables, use AWS Secrets Manager instead. More info
Medium us-east-1 test-db-responder Lambda function encrypts the environment variables at rest with an encryption key "aws/lambda", which is not a recommended KMS customer-managed key, but an AWS default key. Make sure the environment variables are protected with a KMS customer-managed key. If you store sensitive data in the environment variables, use AWS Secrets Manager instead. More info
Medium us-east-1 test-db-responder Lambda function has no access to VPC-only resources. Configuring your Lambda function to access resources in a VPC. More info
Medium us-east-1 test-scheduler Lambda function encrypts the environment variables at rest with an encryption key "aws/lambda", which is not a recommended KMS customer-managed key, but an AWS default key. Make sure the environment variables are protected with a KMS customer-managed key. If you store sensitive data in the environment variables, use AWS Secrets Manager instead. More info
Medium us-east-1 test-scheduler Lambda function has no access to VPC-only resources. Configuring your Lambda function to access resources in a VPC. More info
Medium us-west-2 my-function Lambda function encrypts the environment variables at rest with an encryption key "aws/lambda", which is not a recommended KMS customer-managed key, but an AWS default key. Make sure the environment variables are protected with a KMS customer-managed key. If you store sensitive data in the environment variables, use AWS Secrets Manager instead. More info
Medium us-west-2 my-function Lambda function has no access to VPC-only resources. Configuring your Lambda function to access resources in a VPC. More info
Functions (5)
Region Function name Description Package type Runtime Code Size Last modified Security issues
us-east-1 test-collectorImage 2 Medium (details)
us-east-1 test-scannerZippython3.87.27 KB 1 Medium (details)
us-east-1 test-db-responderZippython3.81.04 KB 2 Medium (details)
us-east-1 test-schedulerZippython3.8860.0 bytes 2 Medium (details)
us-west-2 my-functionZipnodejs14.x304.0 bytes 2 Medium (details)