SecurityHub is unhappy with Lambda URL
Closed this issue · 2 comments
Andrey9kin commented
SecurityHub is unhappy with Lambda URL
Andrey9kin commented
First research what exactly is the problem suggested by SecurityHub. The current best thinking is that it is unhappy with the fact that anyone can call Lambda URL
EreminAnton commented
Security hub was unhappy with the FunctionURLAllowPublicAccess that is created after lambda url creation by the aws_lambda_function_url resource creation.
Adressed by allowing to use API Gateway instead of Lambda URL