Skip to content
Home
Blog
Notes

Posts tagged with "cdk-nag"

All blog posts tagged with cdk-nag

Tag: cdk-nag

4 posts found

Showing 4 of 4 posts

Tag log buckets created by AWS CDK for third party tools
Jan 11, 2026•5 min read

Tag log buckets created by AWS CDK for third party tools

Overview How you secure cloud configuration often starts with cdk-nag, but many teams also use third-party tools after deployments. Using the “server access logs not configured” example, this post...

awscdkcdk-nag
Read more
Use a customized CDK bootstrap template
Dec 31, 2025•11 min read

Use a customized CDK bootstrap template

Introduction In some cases, the CDK bootstrap resources need changes beyond what's possible with the standard bootstrap parameters. While the CDK provides customization options, certain...

awscdkcdk-nag
Read more
Granular statement cdk-nag AwsSolutions-IAM5 Suppressions
Nov 27, 2025•5 min read

Granular statement cdk-nag AwsSolutions-IAM5 Suppressions

Overview cdk-nag’s AwsSolutions-IAM5 rule is one of the most frequent findings in real-world stacks. It flags wildcard permissions in both Action (e.g., kms:GenerateDataKey) and Resource (e.g., `)...

awscdkcdk-nag
Read more
Suppress cdk-nag findings for custom resource singleton lambda globally
Jan 12, 2025•4 min read

Suppress cdk-nag findings for custom resource singleton lambda globally

Overview When using AWS CDK with custom resources, CDK creates a singleton Lambda function that handles all custom resource operations. This Lambda function can trigger several cdk-nag findings,...

awscdkcdk-nag
Read more
RSS|

© 2026 Johannes Konings. All rights reserved.