Serverless application with public access - Complete Cloud Security in Minutes - Orca Security

Data protection

Serverless application with public access

Risk Level

Informational (4)

Platform(s)

Description

Serverless Application Repository allows to find, deploy, and publish serverless applications in the AWS Cloud. It was detected that the serverless application {AwsServerlessApplicationRepositoryApplication}'s policy allows public access. Public access to an application may expose information that you don't want to be stored or made public. Therefore, use the serverless application's policy in order to restrict who can access that application.

Recommended Mitigation

It is recommended to set the application's policy to provide access to known parties only. For more information: https://docs.aws.amazon.com/serverlessrepo/latest/devguide/security_iam_resource-based-policy-examples.html

See Orca in action

See Orca in action-> View a 10 minute recorded demo or sign up for a personalized one-on-one walk-through.