AWS::Lambda::CodeSigningConfig CodeSigningPolicies

Code signing configuration policies specify the validation failure action for signature mismatch or expiry.

Syntax

To declare this entity in your AWS CloudFormation template, use the following syntax:

JSON

{
  "UntrustedArtifactOnDeployment" : String
}

YAML

  UntrustedArtifactOnDeployment: String

Properties

UntrustedArtifactOnDeployment

Code signing configuration policy for deployment validation failure. If you set the policy to Enforce, Lambda blocks the deployment request if signature validation checks fail. If you set the policy to Warn, Lambda allows the deployment and creates a CloudWatch log.

Default value: Warn

Required: Yes

Type: String

Allowed values: Warn | Enforce

Update requires: No interruption