AWS::Lambda::Function Code
The deployment package for a Lambda function. To deploy a function defined as a container image, you specify the location of a container image in the Amazon ECR registry. For a .zip file deployment package, you can specify the location of an object in Amazon S3. For Node.js and Python functions, you can specify the function code inline in the template.
Note
When you specify source code inline for a Node.js function, the index file that AWS CloudFormation creates uses the extension
.js. This means that Lambda treats the file as a CommonJS module. ES modules aren't supported for
inline functions.
Changes to a deployment package in Amazon S3 or a container image in ECR are not detected automatically during stack updates. To update the function code, change the object key or version in the template.
Syntax
To declare this entity in your AWS CloudFormation template, use the following syntax:
JSON
{ "ImageUri" :String, "S3Bucket" :String, "S3Key" :String, "S3ObjectVersion" :String, "SourceKMSKeyArn" :String, "ZipFile" :String}
YAML
ImageUri:StringS3Bucket:StringS3Key:StringS3ObjectVersion:StringSourceKMSKeyArn:StringZipFile:String
Properties
ImageUri-
URI of a container image in the Amazon ECR registry.
Required: No
Type: String
Update requires: No interruption
S3Bucket-
An Amazon S3 bucket in the same AWS Region as your function. The bucket can be in a different AWS account.
Required: Conditional
Type: String
Pattern:
^[0-9A-Za-z\.\-_]*(?<!\.)$Minimum:
3Maximum:
63Update requires: No interruption
S3Key-
The Amazon S3 key of the deployment package.
Required: Conditional
Type: String
Minimum:
1Maximum:
1024Update requires: No interruption
S3ObjectVersion-
For versioned objects, the version of the deployment package object to use.
Required: Conditional
Type: String
Minimum:
1Maximum:
1024Update requires: No interruption
SourceKMSKeyArn-
The ARN of the AWS Key Management Service (AWS KMS) customer managed key that's used to encrypt your function's .zip deployment package. If you don't provide a customer managed key, Lambda uses an AWS owned key.
Required: No
Type: String
Pattern:
^(arn:(aws[a-zA-Z-]*)?:[a-z0-9-.]+:.*)|()$Update requires: No interruption
ZipFile-
(Node.js and Python) The source code of your Lambda function. If you include your function source inline with this parameter, AWS CloudFormation places it in a file named
indexand zips it to create a deployment package. This zip file cannot exceed 4MB. For theHandlerproperty, the first part of the handler identifier must beindex. For example,index.handler.Note
When you specify source code inline for a Node.js function, the
indexfile that AWS CloudFormation creates uses the extension.js. This means that Lambda treats the file as a CommonJS module. ES modules aren't supported for inline functions.For JSON, you must escape quotes and special characters such as newline (
\n) with a backslash.If you specify a function that interacts with an AWS CloudFormation custom resource, you don't have to write your own functions to send responses to the custom resource that invoked the function. AWS CloudFormation provides a response module (cfn-response) that simplifies sending responses. See Using AWS Lambda with AWS CloudFormation for details.
Required: Conditional
Type: String
Update requires: No interruption
Examples
Inline Function
Inline Node.js function that lists Amazon S3 buckets in
us-east-1
. This example uses the AWS SDK for JavaScript v3, which is available in the nodejs18.x runtime. Before using this example, make sure that your function's execution role has Amazon S3 read permissions.
YAML
Code: ZipFile: | const { S3Client, ListBucketsCommand } = require("@aws-sdk/client-s3"); const s3 = new S3Client({ region: "us-east-1" }); // replace "us-east-1" with your AWS Region exports.handler = async function(event) { const command = new ListBucketsCommand({}); const response = await s3.send(command); return response.Buckets; };
