AWS Lambda Python 3.6 Deprication

[Milbrab]

Is your feature request related to a problem?

Update CFT templates and panw-aws.zip to support Python 3.9 due to AWS removing support for Python 3.6

Describe the solution you'd like

Update CFT templates and panw-aws.zip to support Python 3.9 due to AWS removing support for Python 3.6

Describe alternatives you've considered

None

Additional context

Update CFT templates and panw-aws.zip to support Python 3.9 due to AWS removing support for Python 3.6

[welcome-to-palo-alto-networks[bot]]

:tada: Thanks for opening your first issue here! Welcome to the community!

[hxrsmurf]

Hello,

I updated the CloudFormation template with a new AMI ID for 10.1.6-h6 and this updated the Lambda Custom Resource.

This caused the Custom Resource to delete, but not create successfully due to the python 3.6 deprecation.

Can you please update the panw-aws.zip to support a new version of Python?

cft with autoscale/security_stack/panw-aws.zip

Error in CloudTrail

sourceIPAddress": "[Redacted]",

"userAgent": "Boto3/1.16.13 Python/3.6.15 Linux/4.14.255-285-225.501.amzn2.x86_64 exec-env/AWS_Lambda_python3.6 Botocore/1.19.13",

"errorCode": "InvalidParameterValueException",

"errorMessage": "The runtime parameter of python3.6 is no longer supported for creating or updating AWS Lambda functions. We recommend you use the new runtime (python3.9) while creating or updating functions.",

[justinjocewiczgithub]

@hxrsmurf ...did you find a resolution for this? I'm in the same boat :-(

[hxrsmurf]

@justinjocewiczahead - One could technically update the .zip themselves, but I didn't want to do that. Our support and account rep recommended we migrate to the Terraform AWS Module:

• https://github.com/PaloAltoNetworks/terraform-aws-vmseries-modules

[justinjocewiczgithub]

@hxrsmurf thanks. I just updated the runtime in the template to 3.9 and all worked. The terraform right will be better for sure. Thanks!