chore(allowlist): add AFT IAM roles to allowlist (#3460)

2026-02-10 06:45:08 +00:00 · 2024-02-28 13:42:11 +01:00
parent eed4821d9b
commit 06f988b8e5
1 changed files with 3 additions and 0 deletions
--- a/prowler/config/aws_allowlist.yaml
+++ b/prowler/config/aws_allowlist.yaml
@@ -38,6 +38,9 @@ Allowlist:
            - "aws-controltower-ReadOnlyExecutionRole"
            - "AWSControlTower_VPCFlowLogsRole"
            - "AWSControlTowerExecution"
+            - "AWSAFTAdmin"
+            - "AWSAFTExecution"
+            - "AWSAFTService"
        "iam_policy_*":
          Regions:
            - "*"