This repository was archived by the owner on Oct 4, 2024. It is now read-only.
File tree Expand file tree Collapse file tree 1 file changed +5
-4
lines changed Expand file tree Collapse file tree 1 file changed +5
-4
lines changed Original file line number Diff line number Diff line change 1- AWSTemplateFormatVersion : ' 2010-09-09'
1+ AWSTemplateFormatVersion : ' 2010-09-09' F
22Description : Git webhooks to clone and store a Git repository in S3. Used to integrate Git services
33 with AWS services like AWS CodePipeline, AWS CodeBuild, and AWS CodeDeploy. (qs-1nfhrd9bh)
44Metadata :
@@ -166,7 +166,7 @@ Resources:
166166 Service : lambda.amazonaws.com
167167 Action : sts:AssumeRole
168168 ManagedPolicyArns :
169- - arn:aws :iam::aws:policy/service-role/AWSLambdaBasicExecutionRole
169+ - Sub ' arn:${AWS::Partition} :iam::aws:policy/service-role/AWSLambdaBasicExecutionRole
170170 Path : /
171171 Policies :
172172 - PolicyName : lambda-copier
@@ -184,7 +184,7 @@ Resources:
184184 - s3:PutObject
185185 - s3:DeleteObject
186186 Resource :
187- - !Sub ' arn:aws :s3:::${LambdaZipsBucket}/${QSS3KeyPrefix}*'
187+ - !Sub ' arn:${AWS::Partition} :s3:::${LambdaZipsBucket}/${QSS3KeyPrefix}*'
188188 - Effect : Allow
189189 Action :
190190 - s3:*
@@ -281,6 +281,7 @@ Resources:
281281 Type : AWS::KMS::Key
282282 Properties :
283283 Description : AWS KWS key to encrypt and decrypt SSH keys stored in S3.
284+ EnableKeyRotation : true
284285 KeyPolicy :
285286 Version : ' 2012-10-17'
286287 Statement :
@@ -386,7 +387,7 @@ Resources:
386387 - logs:CreateLogStream
387388 - logs:PutLogEvents
388389 Resource :
389- - arn:aws :logs:*:*:*
390+ - !Sub arn:${AWS::Partition} :logs:*:*:*
390391
391392 CreateSSHKeyLambda :
392393 DependsOn : CopyZips
You can’t perform that action at this time.
0 commit comments