View Code? Open in Web Editor
NEW
This project forked from fiserv /aws-lambda-powertools-python
A suite of utilities for AWS Lambda Functions that makes tracing with AWS X-Ray, structured logging and creating custom metrics asynchronously easier
Home Page: https://fiserv.github.io/aws-lambda-powertools-python/
License: MIT No Attribution
Shell 0.32%
Python 99.25%
Makefile 0.29%
HTML 0.07%
Dockerfile 0.07%
aws-lambda-powertools-python's People
aws-lambda-powertools-python's Issues
generate_traces_template.yml - Ensure that AWS Lambda function is configured for a Dead Letter Queue(DLQ)
Violation detected in /docs/examples/tutorial/generate_traces_template.yml:[10-27]
๐ File Type:
cloudformation
โ Details - Ensure that AWS Lambda function is configured for a Dead Letter Queue(DLQ)
dynamodb_streams_template.yml - Ensure that AWS Lambda function is configured for a Dead Letter Queue(DLQ)
Violation detected in /docs/examples/utilities/batch/dynamodb_streams_template.yml:[17-44]
๐ File Type:
cloudformation
โ Details - Ensure that AWS Lambda function is configured for a Dead Letter Queue(DLQ)
sqs_template.yml - Ensure that AWS Lambda function is configured for a Dead Letter Queue(DLQ)
Violation detected in /docs/examples/utilities/batch/sqs_template.yml:[17-31]
๐ File Type:
cloudformation
โ Details - Ensure that AWS Lambda function is configured for a Dead Letter Queue(DLQ)
create_own_router_template.yml - Ensure that AWS Lambda function is configured for a Dead Letter Queue(DLQ)
Violation detected in /docs/examples/tutorial/create_own_router_template.yml:[8-24]
๐ File Type:
cloudformation
โ Details - Ensure that AWS Lambda function is configured for a Dead Letter Queue(DLQ)
getting_started_template.yml - Ensure that AWS Lambda function is configured inside a VPC
Violation detected in /docs/examples/core/logger/getting_started_template.yml:[4-13]
๐ File Type:
cloudformation
โ Details - Ensure that AWS Lambda function is configured inside a VPC
lambda_layer_main.tf - Ensure that AWS Lambda function is configured for a Dead Letter Queue(DLQ)
Violation detected in /docs/examples/index/lambda_layer_main.tf:[29-38]
๐ File Type:
terraform
โ Details - Ensure that AWS Lambda function is configured for a Dead Letter Queue(DLQ)
lambda_layer_main.tf - Ensure that AWS Lambda function is configured inside a VPC
Violation detected in /docs/examples/index/lambda_layer_main.tf:[29-38]
๐ File Type:
terraform
โ Details - Ensure that AWS Lambda function is configured inside a VPC
kinesis_data_streams_template.yml - Ensure that AWS Lambda function is configured for a Dead Letter Queue(DLQ)
Violation detected in /docs/examples/utilities/batch/kinesis_data_streams_template.yml:[17-45]
๐ File Type:
cloudformation
โ Details - Ensure that AWS Lambda function is configured for a Dead Letter Queue(DLQ)
template.yaml - Ensure that AWS Lambda function is configured for function-level concurrent execution limit
Violation detected in /benchmark/template.yaml:[23-26]
๐ File Type:
cloudformation
โ Details - Ensure that AWS Lambda function is configured for function-level concurrent execution limit
sqs_template.yml - Ensure that AWS Lambda function is configured for function-level concurrent execution limit
Violation detected in /docs/examples/utilities/batch/sqs_template.yml:[17-31]
๐ File Type:
cloudformation
โ Details - Ensure that AWS Lambda function is configured for function-level concurrent execution limit
create_own_router_template.yml - Ensure that AWS Lambda function is configured for function-level concurrent execution limit
Violation detected in /docs/examples/tutorial/create_own_router_template.yml:[8-24]
๐ File Type:
cloudformation
โ Details - Ensure that AWS Lambda function is configured for function-level concurrent execution limit
template.yml - Ensure AppSync has Field-Level logs enabled
Violation detected in /docs/examples/core/event_handler/appsync/template.yml:[61-66]
๐ File Type:
cloudformation
โ Details - Ensure AppSync has Field-Level logs enabled
create_own_router_template.yml - Ensure that AWS Lambda function is configured inside a VPC
Violation detected in /docs/examples/tutorial/create_own_router_template.yml:[8-24]
๐ File Type:
cloudformation
โ Details - Ensure that AWS Lambda function is configured inside a VPC
code_example_template.yml - Ensure that AWS Lambda function is configured for function-level concurrent execution limit
Violation detected in /docs/examples/tutorial/code_example_template.yml:[8-21]
๐ File Type:
cloudformation
โ Details - Ensure that AWS Lambda function is configured for function-level concurrent execution limit
lambda_layer_template.yml - Ensure that AWS Lambda function is configured for function-level concurrent execution limit
Violation detected in /docs/examples/index/lambda_layer_template.yml:[4-11]
๐ File Type:
cloudformation
โ Details - Ensure that AWS Lambda function is configured for function-level concurrent execution limit
template.yml - Ensure DynamoDB Tables are encrypted using a KMS Customer Managed CMK
Violation detected in /docs/examples/utilities/idempotency/template.yml:[4-16]
๐ File Type:
cloudformation
โ Details - Ensure DynamoDB Tables are encrypted using a KMS Customer Managed CMK
create_metrics_template.yml - Ensure that AWS Lambda function is configured for a Dead Letter Queue(DLQ)
Violation detected in /docs/examples/tutorial/create_metrics_template.yml:[8-27]
๐ File Type:
cloudformation
โ Details - Ensure that AWS Lambda function is configured for a Dead Letter Queue(DLQ)
sar_template.yml - Ensure that AWS Lambda function is configured inside a VPC
Violation detected in /docs/examples/index/sar_template.yml:[11-19]
๐ File Type:
cloudformation
โ Details - Ensure that AWS Lambda function is configured inside a VPC
create_metrics_template.yml - Ensure that AWS Lambda function is configured inside a VPC
Violation detected in /docs/examples/tutorial/create_metrics_template.yml:[8-27]
๐ File Type:
cloudformation
โ Details - Ensure that AWS Lambda function is configured inside a VPC
code_example_template.yml - Ensure that AWS Lambda function is configured for a Dead Letter Queue(DLQ)
Violation detected in /docs/examples/tutorial/code_example_template.yml:[8-21]
๐ File Type:
cloudformation
โ Details - Ensure that AWS Lambda function is configured for a Dead Letter Queue(DLQ)
generate_traces_template.yml - Ensure that AWS Lambda function is configured for function-level concurrent execution limit
Violation detected in /docs/examples/tutorial/generate_traces_template.yml:[10-27]
๐ File Type:
cloudformation
โ Details - Ensure that AWS Lambda function is configured for function-level concurrent execution limit
dynamodb_streams_template.yml - Ensure that AWS Lambda function is configured inside a VPC
Violation detected in /docs/examples/utilities/batch/dynamodb_streams_template.yml:[17-44]
๐ File Type:
cloudformation
โ Details - Ensure that AWS Lambda function is configured inside a VPC
template.yml - Check encryption settings for Lambda environmental variable
Violation detected in /docs/examples/core/tracer/template.yml:[4-13]
๐ File Type:
cloudformation
โ Details - Check encryption settings for Lambda environmental variable
lambda_layer_main.tf - X-ray tracing is enabled for Lambda
Violation detected in /docs/examples/index/lambda_layer_main.tf:[29-38]
๐ File Type:
terraform
โ Details - X-ray tracing is enabled for Lambda
rebuild_latest_docs.yml - The build output cannot be affected by user parameters other than the build entry point and the top-level source location. GitHub Actions workflow_dispatch inputs MUST be empty.
Violation detected in /.github/workflows/rebuild_latest_docs.yml:[14-21]
๐ File Type:
github_actions
โ Details - The build output cannot be affected by user parameters other than the build entry point and the top-level source location. GitHub Actions workflow_dispatch inputs MUST be empty.
getting_started_template.yml - Check encryption settings for Lambda environmental variable
Violation detected in /docs/examples/core/logger/getting_started_template.yml:[4-13]
๐ File Type:
cloudformation
โ Details - Check encryption settings for Lambda environmental variable
generate_traces_template.yml - Ensure that AWS Lambda function is configured inside a VPC
Violation detected in /docs/examples/tutorial/generate_traces_template.yml:[10-27]
๐ File Type:
cloudformation
โ Details - Ensure that AWS Lambda function is configured inside a VPC
create_metrics_template.yml - Ensure that AWS Lambda function is configured for function-level concurrent execution limit
Violation detected in /docs/examples/tutorial/create_metrics_template.yml:[8-27]
๐ File Type:
cloudformation
โ Details - Ensure that AWS Lambda function is configured for function-level concurrent execution limit
sqs_template.yml - Ensure that AWS Lambda function is configured inside a VPC
Violation detected in /docs/examples/utilities/batch/sqs_template.yml:[17-31]
๐ File Type:
cloudformation
โ Details - Ensure that AWS Lambda function is configured inside a VPC
sar_template.yml - Ensure that AWS Lambda function is configured for a Dead Letter Queue(DLQ)
Violation detected in /docs/examples/index/sar_template.yml:[11-19]
๐ File Type:
cloudformation
โ Details - Ensure that AWS Lambda function is configured for a Dead Letter Queue(DLQ)
dynamodb_streams_template.yml - Ensure Dynamodb point in time recovery (backup) is enabled
Violation detected in /docs/examples/utilities/batch/dynamodb_streams_template.yml:[49-66]
๐ File Type:
cloudformation
โ Details - Ensure Dynamodb point in time recovery (backup) is enabled
codePipelineEvent.json - AWS Access Key
Violation detected in /tests/events/codePipelineEvent.json:[27-28]
๐ File Type:
secrets
โ Details - AWS Access Key
Dockerfile - Ensure that HEALTHCHECK instructions have been added to container images
Violation detected in /docs/Dockerfile:[1-2]
๐ File Type:
dockerfile
โ Details - Ensure that HEALTHCHECK instructions have been added to container images
getting_started_template.yml - Ensure that AWS Lambda function is configured for a Dead Letter Queue(DLQ)
Violation detected in /docs/examples/core/logger/getting_started_template.yml:[4-13]
๐ File Type:
cloudformation
โ Details - Ensure that AWS Lambda function is configured for a Dead Letter Queue(DLQ)
sar_template.yml - Ensure that AWS Lambda function is configured for function-level concurrent execution limit
Violation detected in /docs/examples/index/sar_template.yml:[11-19]
๐ File Type:
cloudformation
โ Details - Ensure that AWS Lambda function is configured for function-level concurrent execution limit
add_route_temaplate.yml - Ensure that AWS Lambda function is configured inside a VPC
Violation detected in /docs/examples/tutorial/add_route_temaplate.yml:[21-32]
๐ File Type:
cloudformation
โ Details - Ensure that AWS Lambda function is configured inside a VPC
dynamodb_streams_template.yml - Ensure all data stored in the SQS queue is encrypted
Violation detected in /docs/examples/utilities/batch/dynamodb_streams_template.yml:[46-47]
๐ File Type:
cloudformation
โ Details - Ensure all data stored in the SQS queue is encrypted
getting_started_template.yml - Ensure that AWS Lambda function is configured for function-level concurrent execution limit
Violation detected in /docs/examples/core/logger/getting_started_template.yml:[4-13]
๐ File Type:
cloudformation
โ Details - Ensure that AWS Lambda function is configured for function-level concurrent execution limit
add_route_temaplate.yml - Ensure that AWS Lambda function is configured for function-level concurrent execution limit
Violation detected in /docs/examples/tutorial/add_route_temaplate.yml:[21-32]
๐ File Type:
cloudformation
โ Details - Ensure that AWS Lambda function is configured for function-level concurrent execution limit
codePipelineEvent.json - Base64 High Entropy String
Violation detected in /tests/events/codePipelineEvent.json:[28-29]
๐ File Type:
secrets
โ Details - Base64 High Entropy String
record_pr.yml - Ensure run commands are not vulnerable to shell injection
Violation detected in /.github/workflows/record_pr.yml:[13-22]
๐ File Type:
github_actions
โ Details - Ensure run commands are not vulnerable to shell injection
template.yml - Ensure that AWS Lambda function is configured for function-level concurrent execution limit
Violation detected in /docs/examples/core/event_handler/api_gateway/layout/template.yml:[19-42]
๐ File Type:
cloudformation
โ Details - Ensure that AWS Lambda function is configured for function-level concurrent execution limit
code_example_template.yml - Ensure that AWS Lambda function is configured inside a VPC
Violation detected in /docs/examples/tutorial/code_example_template.yml:[8-21]
๐ File Type:
cloudformation
โ Details - Ensure that AWS Lambda function is configured inside a VPC
template.yml - Ensure AppSync has Logging enabled
Violation detected in /docs/examples/core/event_handler/appsync/template.yml:[61-66]
๐ File Type:
cloudformation
โ Details - Ensure AppSync has Logging enabled
template.yaml - Ensure that AWS Lambda function is configured for a Dead Letter Queue(DLQ)
Violation detected in /benchmark/template.yaml:[23-26]
๐ File Type:
cloudformation
โ Details - Ensure that AWS Lambda function is configured for a Dead Letter Queue(DLQ)
CVE-2022-40899 - High Severity Vulnerability
Vulnerable Library - future-0.18.2.tar.gz
Clean single-source support for Python 3 and 2
Library home page: https://files.pythonhosted.org/packages/45/0b/38b06fd9b92dc2b68d58b75f900e97884c45bedd2ff83203d933cf5851c9/future-0.18.2.tar.gz
Dependency Hierarchy:
aws_xray_sdk-2.9.0-py2.py3-none-any.whl (Root Library)
โ future-0.18.2.tar.gz (Vulnerable Library)
Found in HEAD commit: d052a5509769e946425538fda88e6c85ef98d39b
Found in base branch: develop
Vulnerability Details
An issue discovered in Python Charmers Future 0.18.2 and earlier allows remote attackers to cause a denial of service via crafted Set-Cookie header from malicious web server.
Publish Date: 2022-12-23
URL: CVE-2022-40899
CVSS 3 Score Details (7.5 )
Base Score Metrics:
Exploitability Metrics:
Attack Vector: Network
Attack Complexity: Low
Privileges Required: None
User Interaction: None
Scope: Unchanged
Impact Metrics:
Confidentiality Impact: None
Integrity Impact: None
Availability Impact: High
For more information on CVSS3 Scores, click here .
kinesis_data_streams_template.yml - Ensure all data stored in the SQS queue is encrypted
Violation detected in /docs/examples/utilities/batch/kinesis_data_streams_template.yml:[47-48]
๐ File Type:
cloudformation
โ Details - Ensure all data stored in the SQS queue is encrypted
codePipelineEventData.json - AWS Access Key
Violation detected in /tests/events/codePipelineEventData.json:[39-40]
๐ File Type:
secrets
โ Details - AWS Access Key
lambda_layer_template.yml - Ensure that AWS Lambda function is configured for a Dead Letter Queue(DLQ)
Violation detected in /docs/examples/index/lambda_layer_template.yml:[4-11]
๐ File Type:
cloudformation
โ Details - Ensure that AWS Lambda function is configured for a Dead Letter Queue(DLQ)
kinesis_data_streams_template.yml - Ensure that AWS Lambda function is configured inside a VPC
Violation detected in /docs/examples/utilities/batch/kinesis_data_streams_template.yml:[17-45]
๐ File Type:
cloudformation
โ Details - Ensure that AWS Lambda function is configured inside a VPC