-
### Description:
When CT.S3.PR.2 Guard Rail is enabled (this is a standard guard rail required in pen tests), `copilot svc init` fails.
> Hook failed with message: ValidationError [CT.S3.PR.2]: …
-
-
**Describe the bug**
OUs created/registered in AWS Control Tower with LZA through organization-config.yaml are not deleted when removed from configuration file.
**To Reproduce**
1. Add new OU…
-
The seqerakit integration allows one to provision a brand new AWS Batch CE (via TowerForge) as part of the `terraform apply` process. While this is very handy from a stand-up process, it can result in…
-
### Discussed in https://github.com/prowler-cloud/prowler/discussions/3809
Originally posted by @dmkim22-lguplus April 18, 2024
Hello,
IAM Roles created by AWS Control Tower and AFT (Accoun…
-
A deliberate design decision was made in that the Terraform installer would be limited only to creating IAM resources necessary for the Tower VM to be able to access other installer-related mechanism …
-
Hello
As described here, https://github.com/aws-ia/terraform-aws-control_tower_account_factory/issues/23
AFT does not support custom tags. This is crucial when talking about tags strategy.
Issu…
-
### Environment information
```plain text
N/A
```
### Description
S3 buckets used for storing metadata like data schema does not follow Control Tower enforced policies as they are the bes…
-
Based on the [Custom wrapper for AWS Control Tower Account Factory](https://sbstjn.com/blog/aws-control-tower-account-factory-wrapper/) blog post, we want to have a [SSM Automation](https://docs.aws.a…
-
**Describe the bug**
`cfn_nag` is no longer maintained (last update over two years ago) and is missing support for recent CloudFormation features such as `Fn::ForEach`:
* https://github.com/ste…