Lambda function policies should not allow wildcard principals

lambda

Description

Lambda function resource policies should not grant access to wildcard principals (Principal: "*"). Wildcard principals allow any AWS account or unauthenticated user to access the resource, creating a significant security risk.

Remediation

Remove or restrict resource-based policy statements that grant access to wildcard principals. For guidance, refer to Using resource-based policies for Lambda.