aws-iot-chat-example icon indicating copy to clipboard operation
aws-iot-chat-example copied to clipboard
verified publisher icon aws-samples

Risk: over-authorization of AWS IoT policy

Open P-Verifier opened this issue 3 years ago • 0 comments

We are a security research team and we recently discovered that there is an over-authorization security issue with this project's IoT policy. The affected file is as following:

1. aws-iot-chat-example/api/serverless.yml

P-Verifier avatar May 16 '22 12:05 P-Verifier