Always expand IAM wildcard permissions (*) to specific actions for thorough security analysis. Wildcard permissions can unintentionally grant excessive access, creating security vulnerabilities.
Use the IAM_ACTION_EXPANSION extension in your security scanning tools to automatically expand wildcards to specific permissions:
metadata:
id: "CKV2_CUSTOM_1"
extensions:
- IAM_ACTION_EXPANSION
This allows for precise permission auditing and helps identify overly permissive policies that might violate the principle of least privilege.
Enter the URL of a public GitHub repository