You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
This commit was created on GitHub.com and signed with GitHub’s verified signature.
The key has expired.
Added
New regex REGEX_IS_STAR, matches only a * character.
Changed
GenericWildcardPrincipalRule, S3BucketPolicyPrincipalRule, S3CrossAccountTrustRule, SQSQueuePolicyPublicRule and KMSKeyWildcardPrincipal now trust the condition to reduce false positives.
Rules check the resource type using isinstance instead of comparing type to a string if pycfmodel implements the resource.
Instance method add_failure now accepts risk_value and risk_mode as optional parameters.
CrossAccountTrustRule only runs if config has defined self._config.aws_account_id.
