-
**Is your feature request related to a problem? Please describe.**
I'm currently using a c7n policy that will auto attach an IAM managed policy to every newly created role. I'd like to do attach it t…
-
Hi there!
Perhaps I'm misunderstanding the usecase for service_sdk_mappings, but I think it's missing some entries.
For example, I would like to find all possible IAM Actions associated with a …
-
**Problem Description**
The resource ecs-container-instance does not support the possibility do use the mode cloudtrail. Me and my colleagues have a bussiness demand to monitor in realtime all the co…
-
I tried writing two policies one to detect when and `AttachGroupPolicy` event occurs and another one to check whether a Group gets the `Admin` policy. Both dont work.
From the lambda logs I can see…
-
This is cli only I am not using lambda.
Running policy cloudtrail-enable-GovCloud.yml against account ACCOUNT
17:36:46 2019-02-13 22:36:46,765: custodian.policy:INFO policy: cloudtrail-enable …
-
I have two tags which I want to enforce to all the resources in my OUs: `CostCenter` and `Environment`.
ADF only recognises the file called `tagging-policy.json` in the `adf-bootstrap` folder.
Cre…
-
### Describe the bug
When deploying, updating dynamodb table with replica regions, I observe access denied errors in cloud trail log
### Expected Behavior
No access denied errors in cloudtrai…
-
In https://github.com/DataBiosphere/azul/pull/4084 we had to relax the GitLab permission boundary to make space for additional statements. The policy is limited to 6144 characters and it is challengin…
-
### Describe the bug
I have policy which should tag a secret every time its value is modifed.
For doing this, im using cloudtrail and the following configuration:
```
events:
- id…
-
## Background
Remove cloudformation directory and associated code from cloud-platform-infrastructure repo
## Proposed user journey
## Approach
## Which part of the user docs does t…