Checks/Aws/Test-AwslambdaFunctionNoSecretsInCode.ps1
|
function Test-AwslambdaFunctionNoSecretsInCode { <# .SYNOPSIS Lambda function code contains no hardcoded secrets .DESCRIPTION **Lambda function code** is analyzed for **embedded secrets** across files in the deployment package, detecting patterns like API keys, passwords, tokens, and connection strings. Findings reference file names and line numbers where potential secrets appear. .PARAMETER Check CIEMCheck object containing check metadata. #> [CmdletBinding()] [OutputType([PSCustomObject[]])] param( [Parameter(Mandatory)] [CIEMCheck]$Check ) $ErrorActionPreference = 'Stop' # TODO: Implement check logic based on Prowler check: awslambda_function_no_secrets_in_code [CIEMScanResult]::Create($Check, 'MANUAL', 'This check requires manual implementation. See Prowler check awslambda_function_no_secrets_in_code for reference.', 'N/A', 'awslambda Resources') } |