Ensure Serverless Framework API Endpoint Config Is Private

Serverless Framework Function is a way of running code without provisioning or managing servers.
EndpointType is a property that defines how the function is exposed to the internet.
You can set endpointType to 'PRIVATE' to make the function only accessible within your virtual network, so it can help you improve your function's security, performance, and reliability by reducing exposure to external threats and network threats latency.

Suggest Edits

Risk Level: medium
Platform: AWS Serverless
Spectral Rule ID: SLFW008

REMEDIATION

in provider Set endpointType to 'PRIVATE'

service: my-service
frameworkVersion: '2'
provider:
  name: aws
- endpointType: REGIONAL
+ endpointType: PRIVATE

https://www.serverless.com/framework/docs/providers/aws/guide/functions/
https://docs.aws.amazon.com/serverless-application-model/latest/developerguide/sam-property-api-endpointconfiguration.html

Updated about 1 year ago

REMEDIATION

Read more: