AWS::Lambda::CodeSigningConfig CodeSigningPolicies - AWS CloudFormation

AWS::Lambda::CodeSigningConfig CodeSigningPolicies

Code signing configuration policies specify the validation failure action for signature mismatch or expiry.


To declare this entity in your AWS CloudFormation template, use the following syntax:


{ "UntrustedArtifactOnDeployment" : String }



Code signing configuration policy for deployment validation failure. If you set the policy to Enforce, Lambda blocks the deployment request if signature validation checks fail. If you set the policy to Warn, Lambda allows the deployment and creates a CloudWatch log.

Default value: Warn

Required: Yes

Type: String

Allowed values: Enforce | Warn

Update requires: No interruption