Giter VIP home page Giter VIP logo

snowdensb / aws-lambda-powertools-python Goto Github PK

View Code? Open in Web Editor NEW

This project forked from fiserv/aws-lambda-powertools-python

0.0 0.0 0.0 8.14 MB

A suite of utilities for AWS Lambda Functions that makes tracing with AWS X-Ray, structured logging and creating custom metrics asynchronously easier

Home Page: https://fiserv.github.io/aws-lambda-powertools-python/

License: MIT No Attribution

Shell 0.32% Python 99.25% Makefile 0.29% HTML 0.07% Dockerfile 0.07%

aws-lambda-powertools-python's People

Contributors

alessandrovol23 avatar am1ru1 avatar am29d avatar amazon-auto avatar arthurf1969 avatar bastianzim avatar bls20aws avatar bmicklea avatar brockreece avatar bvmiko avatar carlos-alberto avatar danilohgds avatar danyc97 avatar dependabot[bot] avatar dreamorosi avatar eldritchideen avatar gmcrocetti avatar groovydan avatar gwlester avatar heitorlessa avatar huonw avatar michaelbrewer avatar mploski avatar nmoutschen avatar ran-isenberg avatar sthuber90 avatar sthulb avatar tankanow avatar walmsles avatar whardier avatar

aws-lambda-powertools-python's Issues

template.yml - Ensure AppSync has Field-Level logs enabled

template.yml - Ensure AppSync has Field-Level logs enabled

Violation detected in /docs/examples/core/event_handler/appsync/template.yml:[61-66]

๐Ÿ“ƒ File Type: cloudformation

โ›” Details - Ensure AppSync has Field-Level logs enabled

rebuild_latest_docs.yml - The build output cannot be affected by user parameters other than the build entry point and the top-level source location. GitHub Actions workflow_dispatch inputs MUST be empty.

rebuild_latest_docs.yml - The build output cannot be affected by user parameters other than the build entry point and the top-level source location. GitHub Actions workflow_dispatch inputs MUST be empty.

Violation detected in /.github/workflows/rebuild_latest_docs.yml:[14-21]

๐Ÿ“ƒ File Type: github_actions

โ›” Details - The build output cannot be affected by user parameters other than the build entry point and the top-level source location. GitHub Actions workflow_dispatch inputs MUST be empty.

codePipelineEvent.json - AWS Access Key

codePipelineEvent.json - AWS Access Key

Violation detected in /tests/events/codePipelineEvent.json:[27-28]

๐Ÿ“ƒ File Type: secrets

โ›” Details - AWS Access Key

template.yml - Ensure AppSync has Logging enabled

template.yml - Ensure AppSync has Logging enabled

Violation detected in /docs/examples/core/event_handler/appsync/template.yml:[61-66]

๐Ÿ“ƒ File Type: cloudformation

โ›” Details - Ensure AppSync has Logging enabled

CVE-2022-40899 (High) detected in future-0.18.2.tar.gz

CVE-2022-40899 - High Severity Vulnerability

Vulnerable Library - future-0.18.2.tar.gz

Clean single-source support for Python 3 and 2

Library home page: https://files.pythonhosted.org/packages/45/0b/38b06fd9b92dc2b68d58b75f900e97884c45bedd2ff83203d933cf5851c9/future-0.18.2.tar.gz

Dependency Hierarchy:

  • aws_xray_sdk-2.9.0-py2.py3-none-any.whl (Root Library)
    • โŒ future-0.18.2.tar.gz (Vulnerable Library)

Found in HEAD commit: d052a5509769e946425538fda88e6c85ef98d39b

Found in base branch: develop

Vulnerability Details

An issue discovered in Python Charmers Future 0.18.2 and earlier allows remote attackers to cause a denial of service via crafted Set-Cookie header from malicious web server.

Publish Date: 2022-12-23

URL: CVE-2022-40899

CVSS 3 Score Details (7.5)

Base Score Metrics:

  • Exploitability Metrics:
    • Attack Vector: Network
    • Attack Complexity: Low
    • Privileges Required: None
    • User Interaction: None
    • Scope: Unchanged
  • Impact Metrics:
    • Confidentiality Impact: None
    • Integrity Impact: None
    • Availability Impact: High

For more information on CVSS3 Scores, click here.

codePipelineEventData.json - AWS Access Key

codePipelineEventData.json - AWS Access Key

Violation detected in /tests/events/codePipelineEventData.json:[39-40]

๐Ÿ“ƒ File Type: secrets

โ›” Details - AWS Access Key

Recommend Projects

  • React photo React

    A declarative, efficient, and flexible JavaScript library for building user interfaces.

  • Vue.js photo Vue.js

    ๐Ÿ–– Vue.js is a progressive, incrementally-adoptable JavaScript framework for building UI on the web.

  • Typescript photo Typescript

    TypeScript is a superset of JavaScript that compiles to clean JavaScript output.

  • TensorFlow photo TensorFlow

    An Open Source Machine Learning Framework for Everyone

  • Django photo Django

    The Web framework for perfectionists with deadlines.

  • D3 photo D3

    Bring data to life with SVG, Canvas and HTML. ๐Ÿ“Š๐Ÿ“ˆ๐ŸŽ‰

Recommend Topics

  • javascript

    JavaScript (JS) is a lightweight interpreted programming language with first-class functions.

  • web

    Some thing interesting about web. New door for the world.

  • server

    A server is a program made to process requests and deliver data to clients.

  • Machine learning

    Machine learning is a way of modeling and interpreting data that allows a piece of software to respond intelligently.

  • Game

    Some thing interesting about game, make everyone happy.

Recommend Org

  • Facebook photo Facebook

    We are working to build community through open source technology. NB: members must have two-factor auth.

  • Microsoft photo Microsoft

    Open source projects and samples from Microsoft.

  • Google photo Google

    Google โค๏ธ Open Source for everyone.

  • D3 photo D3

    Data-Driven Documents codes.