Description of changes:
This PR includes test that tests each VPCe (Gateway and Interface) has a resource policy attached that does not allow all actions (i.e. the default). This manages several attack vectors for bad actors to use to exfiltrate data from a compromised account.
I confirm these files are made available under CC0 1.0 Universal (https://creativecommons.org/publicdomain/zero/1.0/legalcode)
Issue #, if available:
Description of changes: This PR includes test that tests each VPCe (Gateway and Interface) has a resource policy attached that does not allow all actions (i.e. the default). This manages several attack vectors for bad actors to use to exfiltrate data from a compromised account.