AWS-Lambda-function-alias-uses-single-trigger

Severity: Medium

Description: This control ensures that multiple triggers are not configured for single Lambda Function alias. Single responsibility model recommends that each entity should be assigned only a single task. This eliminates unwanted results in case there are multiple changes that are handled by same entity.

Remediation Steps:

Perform following to update lambda function trigger:

1. Login to the AWS Management Console at https://console.aws.amazon.com.

2. Navigate to AWS Lambda console.

3. In the navigation pane,  select Functions.

4. Click on the function to be modified.

5. Click on Qualifiers and select the Aliases to modify

6. Navigate to "Designer", remove the excess triggers.

7. Click Save to apply.

8. Check the version(s) for corresponding alias and remove any excess triggers attached.

Important:

Proper policies should be assigned to the new role for granting appropriate permissions to avoid any problems in the execution of Lambda Function

Reference:

• https://docs.aws.amazon.com/lambda/latest/dg/lambda-services.html

• https://docs.aws.amazon.com/cli/latest/reference/lambda/delete-event-source-mapping.html

• https://docs.aws.amazon.com/cli/latest/reference/lambda/remove-permission.html