Skip to content

Commit a383695

Browse files
TOEL2TOEL2
committed
[ELI-702] - disabling signing enforcement for now
1 parent a94fdc0 commit a383695

2 files changed

Lines changed: 5 additions & 1 deletion

File tree

infrastructure/modules/lambda/locals.tf

Lines changed: 3 additions & 1 deletion
Original file line numberDiff line numberDiff line change
@@ -1,3 +1,5 @@
11
locals {
2-
enable_lambda_code_signing = contains(["test", "preprod", "prod"], var.environment)
2+
enable_lambda_code_signing = false
3+
# enable_lambda_code_signing = contains(["test", "preprod", "prod"], var.environment)
4+
# For the next deployment ^
35
}

infrastructure/stacks/iams-developer-roles/github_actions_policies.tf

Lines changed: 2 additions & 0 deletions
Original file line numberDiff line numberDiff line change
@@ -710,6 +710,8 @@ resource "aws_iam_policy" "kinesis_management" {
710710
}
711711

712712
resource "aws_iam_policy" "code_signing_management" {
713+
#checkov:skip=CKV_AWS_290: Actions require wildcard resource for Lambda code signing configs and Signer jobs
714+
#checkov:skip=CKV_AWS_235: Actions require wildcard resource for Lambda code signing configs and Signer jobs
713715
name = "code-signing-management"
714716
description = "Allow GitHub Actions to manage Lambda code signing and start Signer jobs"
715717
path = "/service-policies/"

0 commit comments

Comments
 (0)