[ELI-731] checkov

TOEL2 · TOEL2 · commit 96f16c867d02 · 2026-04-24T08:33:53.000+01:00
diff --git a/infrastructure/stacks/iams-developer-roles/github_actions_policies.tf b/infrastructure/stacks/iams-developer-roles/github_actions_policies.tf
@@ -803,6 +803,8 @@ resource "aws_iam_policy" "cloudwatch_management" {
 }
 
 data "aws_iam_policy_document" "regression_test_permissions" {
+  #checkov:skip=CKV_AWS_356: Wildcard resource is required to list all dynamodb tables
+  #checkov:skip=CKV_AWS_111: Wildcard resource is required for cloudwatch and xray read permissions
   statement {
     sid    = "S3Access"
     effect = "Allow"

Original file line number	Diff line number	Diff line change
`@@ -803,6 +803,8 @@ resource "aws_iam_policy" "cloudwatch_management" {`
`803`	`803`	`}`
`804`	`804`
`805`	`805`	`data "aws_iam_policy_document" "regression_test_permissions" {`
	`806`	`+ #checkov:skip=CKV_AWS_356: Wildcard resource is required to list all dynamodb tables`
	`807`	`+ #checkov:skip=CKV_AWS_111: Wildcard resource is required for cloudwatch and xray read permissions`
`806`	`808`	`statement {`
`807`	`809`	`sid = "S3Access"`
`808`	`810`	`effect = "Allow"`