Question on AWSLambdaVPCAccessExecutionRole
ahusmc opened this issue · comments
Alfredo Hickman commented
Is this really necessary or is there a more restrictive permission set that could accomplish the same?
"arn:aws:iam::aws:policy/service-role/AWSLambdaVPCAccessExecutionRole" It seems to me that GuardDuty doesn't need to do anything with the VPC. It should just receive the guard duty message as JSON and then post it on to slack. Thoughts?
ryanholland commented
You are correct that is not needed, I have removed it from the template.
thanks
ryan