This guy wrote typicalrunt.me » Enforcing Least Privilege When Logging Lambda Functions to CloudWatch on how he fixed it with cloudformation
This guy wrote typicalrunt.me » Enforcing Least Privilege When Logging Lambda Functions to CloudWatch on how he fixed it with cloudformation