Lambda Function Has Secrets in Environment
Overview
To increase security, AWS recommends using Secrets Manager instead of environment variables to store credentials and other sensitive values.
Vendor
AWS
Cloud Service
Lambda
Input
{"keysToIgnore":{"label":"Environment variable keys to ignore","value":[],"type":"string[]"}}
Related Controls
CSMM v1 WKL-05.2
References
Severity
4
Item Types
AWS::Lambda::Function