AWS::Lambda::CodeSigningConfig CodeSigningPolicies - AWS CloudFormation

AWS::Lambda::CodeSigningConfig CodeSigningPolicies

Code signing configuration policies specifies the validation failure action for signature mismatch or expiry.

Syntax

To declare this entity in your AWS CloudFormation template, use the following syntax:

JSON

{ "UntrustedArtifactOnDeployment" : String }

Properties

UntrustedArtifactOnDeployment

Code signing configuration policy for deployment validation failure. If you set the policy to Enforce, Lambda blocks the deployment request if signature validation checks fail. If you set the policy to Warn, Lambda allows the deployment and creates a CloudWatch log.

Default value: Warn

Required: Yes

Type: String

Allowed values: Enforce | Warn

Update requires: No interruption