AWS - Lambda
This Integration is part of the AWS - Lambda Pack.#
Supported versions
Supported Cortex XSOAR versions: 6.8.0 and later.
Amazon Web Services Serverless Compute service (lambda)
This integration was integrated and tested with version 2015-03-31 of AWS - Lambda.
For detailed instructions about setting up authentication, see: AWS Integrations - Authentication.
Required AWS IAM Permissions and Roles for Lambda are documented here.
Configure AWS - Lambda on Cortex XSOAR#
Navigate to Settings > Integrations > Servers & Services.
Search for AWS - Lambda.
Click Add instance to create and configure a new integration instance.
Parameter Description Required defaultRegion AWS Default Region False roleArn Role Arn False roleSessionName Role Session Name False sessionDuration Role Session Duration False access_key Access Key False secret_key Secret Key False timeout The time in seconds till a timeout exception is reached. You can specify just the read timeout (for example 60) or also the connect timeout followed after a comma (for example 60,10). If a connect timeout is not specified a default of 10 second will be used. You may also override the value at the aws-lambda-invoke command. False retries The maximum number of retry attempts when connection or throttling errors are encountered. Set to 0 to disable retries. The default value is 5 and the limit is 10. Note: Increasing the number of retries will increase the execution time. You may also override the value when executing the aws-lambda-invoke command. More details about the retries strategy is available here, False insecure Trust any certificate (not secure) False proxy Use system proxy settings False Click Test to validate the URLs, token, and connection.
Commands#
You can execute these commands from the Cortex XSOAR CLI, as part of an automation, or in a playbook. After you successfully execute a command, a DBot message appears in the War Room with the command details.
aws-lambda-get-function#
Returns the configuration information of the Lambda function and a presigned URL link to the .zip file you uploaded with CreateFunction so you can download the .zip file. Note that the URL is valid for up to 10 minutes. The configuration information is the same information you provided as parameters when uploading the function. Use the Qualifier parameter to retrieve a published version of the function. Otherwise, returns the unpublished version ($LATEST ).
Required Permissions#
AWSLambda_ReadOnlyAccess: more details here.
Base Command#
aws-lambda-get-function
Input#
| Argument Name | Description | Required |
|---|---|---|
| functionName | The name of the Lambda function. | Required |
| qualifier | Specify a version or alias to get details about a published version of the function. | Optional |
| region | The AWS Region, if not specified the default region will be used. Possible values are: us-east-1, us-east-2, us-west-1, us-west-2, ca-central-1, eu-west-1, eu-central-1, eu-west-2, ap-northeast-1, ap-northeast-2, ap-southeast-1, ap-southeast-2, ap-south-1, sa-east-1, eu-north-1, eu-west-3. | Optional |
| roleArn | The Amazon Resource Name (ARN) of the role to assume. | Optional |
| roleSessionName | An identifier for the assumed role session. | Optional |
| roleSessionDuration | The duration, in seconds, of the role session. The value can range from 900 seconds (15 minutes) up to the maximum session duration setting for the role. | Optional |
Context Output#
| Path | Type | Description |
|---|---|---|
| AWS.Lambda.Functions.Configuration.FunctionName | string | The name of the function. |
| AWS.Lambda.Functions.Configuration.FunctionArn | string | The function's Amazon Resource Name. |
| AWS.Lambda.Functions.Configuration.Runtime | string | The runtime environment for the Lambda function. |
| AWS.Lambda.Functions.Configuration.Role | string | The function's execution role. |
| AWS.Lambda.Functions.Configuration.Handler | string | The function Lambda calls to begin executing your function. |
| AWS.Lambda.Functions.Configuration.CodeSize | string | The size of the function's deployment package in bytes. |
| AWS.Lambda.Functions.Configuration.Description | string | The function's description. |
| AWS.Lambda.Functions.Configuration.Timeout | number | The amount of time that Lambda allows a function to run before terminating it. |
| AWS.Lambda.Functions.Configuration.MemorySize | number | The memory allocated to the function |
| AWS.Lambda.Functions.Configuration.LastModified | date | The date and time that the function was last updated, in ISO-8601 format (YYYY-MM-DDThh:mm:ss.sTZD). |
| AWS.Lambda.Functions.Configuration.CodeSha256 | string | The SHA256 hash of the function's deployment package. |
| AWS.Lambda.Functions.Configuration.Version | string | The version of the Lambda function. |
| AWS.Lambda.Functions.Configuration.VpcConfig.SubnetIds | string | A list of VPC subnet IDs. |
| AWS.Lambda.Functions.Configuration.VpcConfig.SecurityGroupIds | string | A list of VPC security groups IDs. |
| AWS.Lambda.Functions.Configuration.VpcConfig.VpcId | string | The ID of the VPC. |
| AWS.Lambda.Functions.Configuration.DeadLetterConfig.TargetArn | string | The Amazon Resource Name (ARN) of an Amazon SQS queue or Amazon SNS topic. |
| AWS.Lambda.Functions.Configuration.Environment.Variables | string | Environment variable key-value pairs. |
| AWS.Lambda.Functions.Configuration.Environment.Error.ErrorCode | string | The error code for environment variables that could not be applied. |
| AWS.Lambda.Functions.Configuration.Environment.Error.Message | string | The error message for environment variables that could not be applied. |
| AWS.Lambda.Functions.Configuration.KMSKeyArn | string | The KMS key used to encrypt the function's environment variables. Only returned if you've configured a customer managed CMK. |
| AWS.Lambda.Functions.Configuration.TracingConfig.Mode | string | The function's AWS X-Ray tracing configuration. The tracing mode. |
| AWS.Lambda.Functions.Configuration.MasterArn | string | The ARN of the master function. |
| AWS.Lambda.Functions.Configuration.RevisionId | string | Represents the latest updated revision of the function or alias. |
| AWS.Lambda.Functions.Configuration.Layers.Arn | string | The Amazon Resource Name (ARN) of the function layer. |
| AWS.Lambda.Functions.Configuration.Layers.CodeSize | number | The size of the layer archive in bytes. |
| AWS.Lambda.Functions.Code.RepositoryType | string | The repository from which you can download the function. |
| AWS.Lambda.Functions.Code.Location | string | The presigned URL you can use to download the function's .zip file that you previously uploaded. The URL is valid for up to 10 minutes. |
| AWS.Lambda.Functions.Tags | string | list of tags associated with the function. |
| AWS.Lambda.Functions.Concurrency.ReservedConcurrentExecutions | string | The number of concurrent executions reserved for this function. |
Command Example#
!aws-lambda-get-function functionName="test_echo"
Context Example#
Human Readable Output#
AWS Lambda Functions#
FunctionArn FunctionName Region Runtime arn:aws:lambda:us-west-2:123456789012:function:test_echo test_echo us-west-2 nodejs12.x
aws-lambda-list-functions#
Returns a list of your Lambda functions. For each function, the response includes the function configuration information. You must use GetFunction to retrieve the code for your function.
Required Permissions#
AWSLambda_ReadOnlyAccess: more details here.
Base Command#
aws-lambda-list-functions
Input#
| Argument Name | Description | Required |
|---|---|---|
| region | The AWS Region, if not specified the default region will be used. Possible values are: us-east-1, us-east-2, us-west-1, us-west-2, ca-central-1, eu-west-1, eu-central-1, eu-west-2, ap-northeast-1, ap-northeast-2, ap-southeast-1, ap-southeast-2, ap-south-1, sa-east-1, eu-north-1, eu-west-3. | Optional |
| roleArn | The Amazon Resource Name (ARN) of the role to assume. | Optional |
| roleSessionName | An identifier for the assumed role session. | Optional |
| roleSessionDuration | The duration, in seconds, of the role session. The value can range from 900 seconds (15 minutes) up to the maximum session duration setting for the role. | Optional |
Context Output#
| Path | Type | Description |
|---|---|---|
| AWS.Lambda.Functions.FunctionName | string | The name of the function. |
| AWS.Lambda.Functions.FunctionArn | string | The function's Amazon Resource Name. |
| AWS.Lambda.Functions.Runtime | string | The runtime environment for the Lambda function. |
| AWS.Lambda.Functions.Role | string | The function's execution role. |
| AWS.Lambda.Functions.Handler | string | The function Lambda calls to begin executing your function. |
| AWS.Lambda.Functions.CodeSize | number | The size of the function's deployment package in bytes. |
| AWS.Lambda.Functions.Description | string | The function's description. |
| AWS.Lambda.Functions.Timeout | number | The amount of time that Lambda allows a function to run before terminating it. |
| AWS.Lambda.Functions.MemorySize | number | The memory allocated to the function. |
| AWS.Lambda.Functions.LastModified | date | The date and time that the function was last updated, in ISO-8601 format (YYYY-MM-DDThh:mm:ss.sTZD). |
| AWS.Lambda.Functions.CodeSha256 | string | The SHA256 hash of the function's deployment package. |
| AWS.Lambda.Functions.Version | string | The version of the Lambda function. |
| AWS.Lambda.Functions.VpcConfig.SubnetIds | string | A list of VPC subnet IDs. |
| AWS.Lambda.Functions.VpcConfig.SecurityGroupIds | string | A list of VPC security groups IDs. |
| AWS.Lambda.Functions.VpcConfig.VpcId | string | The ID of the VPC. |
| AWS.Lambda.Functions.DeadLetterConfig.TargetArn | string | The Amazon Resource Name (ARN) of an Amazon SQS queue or Amazon SNS topic. |
| AWS.Lambda.Functions.Environment.Variables | string | Environment variable key-value pairs. |
| AWS.Lambda.Functions.Environment.Error.ErrorCode | string | Error messages for environment variables that could not be applied. The error code. |
| AWS.Lambda.Functions.Environment.Error.Message | string | Error messages for environment variables that could not be applied. The error message. |
| AWS.Lambda.Functions.KMSKeyArn | string | The KMS key used to encrypt the function's environment variables. Only returned if you've configured a customer managed CMK. |
| AWS.Lambda.Functions.TracingConfig.Mode | string | The function's AWS X-Ray tracing configuration. The tracing mode. |
| AWS.Lambda.Functions.MasterArn | string | The ARN of the master function. |
| AWS.Lambda.Functions.RevisionId | string | Represents the latest updated revision of the function or alias. |
| AWS.Lambda.Functions.Layers.Arn | string | The Amazon Resource Name (ARN) of the function layer. |
| AWS.Lambda.Functions.Layers.CodeSize | string | The size of the layer archive in bytes. |
Command Example#
!aws-lambda-list-functions
Context Example#
Human Readable Output#
AWS Lambda Functions#
FunctionArn FunctionName LastModified Region Runtime arn:aws:lambda:us-west-2:123456789012:function:test_sleep test_sleep 2020-12-30T16:15:55.726+0000 us-west-2 nodejs12.x arn:aws:lambda:us-west-2:123456789012:function:test_echo test_echo 2020-12-31T09:12:56.676+0000 us-west-2 nodejs12.x arn:aws:lambda:us-west-2:123456789012:function:testingFunction testingFunction 2019-02-20T15:33:28.335+0000 us-west-2 nodejs8.10
aws-lambda-list-aliases#
Returns list of aliases created for a Lambda function. For each alias, the response includes information such as the alias ARN, description, alias name, and the function version to which it points.
Required Permissions#
AWSLambda_ReadOnlyAccess: more details here.
Base Command#
aws-lambda-list-aliases
Input#
| Argument Name | Description | Required |
|---|---|---|
| functionName | The name of the lambda function. | Required |
| functionVersion | If you specify this optional parameter, the API returns only the aliases that are pointing to the specific Lambda function version, otherwise the API returns all of the aliases created for the Lambda function. | Optional |
| region | The AWS Region, if not specified the default region will be used. Possible values are: us-east-1, us-east-2, us-west-1, us-west-2, ca-central-1, eu-west-1, eu-central-1, eu-west-2, ap-northeast-1, ap-northeast-2, ap-southeast-1, ap-southeast-2, ap-south-1, sa-east-1, eu-north-1, eu-west-3. | Optional |
| roleArn | The Amazon Resource Name (ARN) of the role to assume. | Optional |
| roleSessionName | An identifier for the assumed role session. | Optional |
| roleSessionDuration | The duration, in seconds, of the role session. The value can range from 900 seconds (15 minutes) up to the maximum session duration setting for the role. | Optional |
Context Output#
| Path | Type | Description |
|---|---|---|
| AWS.Lambda.Aliases.AliasArn | string | Lambda function ARN that is qualified using the alias name as the suffix. |
| AWS.Lambda.Aliases.Name | string | Alias name. |
| AWS.Lambda.Aliases.FunctionVersion | string | Function version to which the alias points. |
| AWS.Lambda.Aliases.Description | string | Alias description. |
| AWS.Lambda.Aliases.RoutingConfig.AdditionalVersionWeights | string | The name of the second alias, and the percentage of traffic that is routed to it. |
| AWS.Lambda.Aliases.RevisionId | string | Represents the latest updated revision of the function or alias. |
Command Example#
Human Readable Output#
aws-lambda-invoke#
Invokes a Lambda function. Specify just a function name to invoke the latest version of the function. To invoke a published version, use the Qualifier parameter to specify a version or alias . If you use the RequestResponse (synchronous) invocation option, note that the function may be invoked multiple times if a timeout is reached. For functions with a long timeout, your client may be disconnected during synchronous invocation while it waits for a response. Use the "timeout" and "retries" args to control this behavior. If you use the Event (asynchronous) invocation option, the function will be invoked at least once in response to an event and the function must be idempotent to handle this.
Required Permissions#
AWSLambdaRole: more details here.
Base Command#
aws-lambda-invoke
Input#
| Argument Name | Description | Required |
|---|---|---|
| functionName | The name of the Lambda function. | Required |
| invocationType | Choose from the following options. RequestResponse (default) - Invoke the function synchronously. Keep the connection open until the function returns a response or times out. Event - Invoke the function asynchronously. Send events that fail multiple times to the function's dead-letter queue (if configured). DryRun - Validate parameter values and verify that the user or role has permission to invoke the function. Possible values are: Event, RequestResponse, DryRun. | Optional |
| logType | You can set this optional parameter to Tail in the request only if you specify the InvocationType parameter with value RequestResponse . In this case, AWS Lambda returns the base64-encoded last 4 KB of log data produced by your Lambda function in the x-amz-log-result header. Possible values are: None, Tail. | Optional |
| clientContext | Using the ClientContext you can pass client-specific information to the Lambda function you are invoking. . | Optional |
| payload | JSON that you want to provide to your Lambda function as input. | Optional |
| qualifier | Specify a version or alias to invoke a published version of the function. | Optional |
| region | The AWS Region, if not specified the default region will be used. Possible values are: us-east-1, us-east-2, us-west-1, us-west-2, ca-central-1, eu-west-1, eu-central-1, eu-west-2, ap-northeast-1, ap-northeast-2, ap-southeast-1, ap-southeast-2, ap-south-1, sa-east-1, eu-north-1, eu-west-3. | Optional |
| roleArn | The Amazon Resource Name (ARN) of the role to assume. | Optional |
| roleSessionName | An identifier for the assumed role session. | Optional |
| roleSessionDuration | The duration, in seconds, of the role session. The value can range from 900 seconds (15 minutes) up to the maximum session duration setting for the role. | Optional |
| retries | The maximum retry attempts when connection or throttling errors are encountered. Set to 0 to disable retries. If not specified will use the instances configured default timeout. | Optional |
| timeout | The time in seconds till a timeout exception is reached. You can specify just the read timeout (for example 60) or also the connect timeout followed after a comma (for example 60,10). If not specified will use the instances configured default timeout. | Optional |
Context Output#
| Path | Type | Description |
|---|---|---|
| AWS.Lambda.InvokedFunctions.FunctionName | string | The name of the Lambda function. |
| AWS.Lambda.InvokedFunctions.FunctionError | string | Indicates whether an error occurred while executing the Lambda function. If an error occurred this field will have one of two values; Handled or Unhandled . Handled errors are errors that are reported by the function while the Unhandled errors are those detected and reported by AWS Lambda. Unhandled errors include out of memory errors and function timeouts. |
| AWS.Lambda.InvokedFunctions.LogResult | string | logs for the Lambda function invocation. This is present only if the invocation type is RequestResponse and the logs were requested. |
| AWS.Lambda.InvokedFunctions.Payload | string | It is the JSON representation of the object returned by the Lambda function. This is present only if the invocation type is RequestResponse. |
| AWS.Lambda.InvokedFunctions.ExecutedVersion | string | The function version that has been executed. This value is returned only if the invocation type is RequestResponse. |
| AWS.Lambda.InvokedFunctions.Region | string | The AWS Region. |
Command Example#
!aws-lambda-invoke functionName="test_echo" logType="Tail" payload="{\"value\":\"test\"}"
Context Example#
Human Readable Output#
AWS Lambda Invoked Functions#
ExecutedVersion FunctionName LogResult Payload Region $LATEST test_echo START RequestId: c24e087f-5c05-4e92-a1a8-e54f2d6cd925 Version: $LATEST
END RequestId: c24e087f-5c05-4e92-a1a8-e54f2d6cd925
REPORT RequestId: c24e087f-5c05-4e92-a1a8-e54f2d6cd925 Duration: 16.00 ms Billed Duration: 16 ms Memory Size: 128 MB Max Memory Used: 65 MB Init Duration: 133.86 ms{"message":"Your function executed successfully!","payload":{"value":"test"}} us-west-2
aws-lambda-get-account-settings#
Retrieves details about your account's limits and usage in an AWS Region.
Required Permissions#
AWSLambda_ReadOnlyAccess: more details here.
Base Command#
aws-lambda-get-account-settings
Input#
| Argument Name | Description | Required |
|---|---|---|
| region | The AWS Region. If not specified the default region will be used. Possible values are: us-east-1, us-east-2, us-west-1, us-west-2, ca-central-1, eu-west-1, eu-central-1, eu-west-2, ap-northeast-1, ap-northeast-2, ap-southeast-1, ap-southeast-2, ap-south-1, sa-east-1, eu-north-1, eu-west-3. | Optional |
| roleArn | The Amazon Resource Name (ARN) of the role to assume. | Optional |
| roleSessionName | An identifier for the assumed role session. | Optional |
| roleSessionDuration | The duration, in seconds, of the role session. The value can range from 900 seconds (15 minutes) up to the maximum session duration setting for the role. | Optional |
Context Output#
| Path | Type | Description |
|---|---|---|
| AWS.Lambda.AccountLimit.TotalCodeSize | number | The amount of storage space that you can use for all deployment packages and layer archives. |
| AWS.Lambda.AccountLimit.CodeSizeUnzipped | number | The maximum size of your function's code and layers when they're extracted. |
| AWS.Lambda.AccountLimit.CodeSizeZipped | number | The maximum size of a deployment package when it's uploaded directly to AWS Lambda. Use Amazon S3 for larger files. |
| AWS.Lambda.AccountLimit.ConcurrentExecutions | number | The maximum number of simultaneous function executions. |
| AWS.Lambda.AccountLimit.UnreservedConcurrentExecutions | number | The maximum number of simultaneous function executions, minus the capacity that's reserved for individual functions with PutFunctionConcurrency . |
| AWS.Lambda.AccountUsage.TotalCodeSize | number | The amount of storage space, in bytes, that's being used by deployment packages and layer archives. |
| AWS.Lambda.AccountUsage. FunctionCount | number | The number of Lambda functions. |
Command Example#
!aws-lambda-get-account-settings
Context Example#
Human Readable Output#
AWS Lambda Functions#
AccountLimit AccountUsage TotalCodeSize: 80530636800
CodeSizeUnzipped: 262144000
CodeSizeZipped: 52428800
ConcurrentExecutions: 1000
UnreservedConcurrentExecutions: 1000TotalCodeSize: 272431
FunctionCount: 3
aws-lambda-get-policy#
Returns the resource-based IAM policy for a function, version, or alias.
Base Command#
aws-lambda-get-policy
Input#
| Argument Name | Description | Required |
|---|---|---|
| region | The AWS Region. If not specified, the default region will be used. Possible values are: us-east-1, us-east-2, us-west-1, us-west-2, ca-central-1, eu-west-1, eu-central-1, eu-west-2, ap-northeast-1, ap-northeast-2, ap-southeast-1, ap-southeast-2, ap-south-1, sa-east-1, eu-north-1, eu-west-3. | Optional |
| roleArn | The Amazon Resource Name (ARN) of the role to assume. | Optional |
| roleSessionName | An identifier for the assumed role session. | Optional |
| roleSessionDuration | The duration, in seconds, of the role session. The value can range from 900 seconds (15 minutes) up to the maximum session duration setting for the role. | Optional |
| functionName | The name of the Lambda function, version, or alias. You can append a version number or alias to any of the formats. The length constraint applies only to the full ARN. If you specify only the function name, it is limited to 64 characters in length. | Required |
Context Output#
| Path | Type | Description |
|---|---|---|
| AWS.Lambda.Policy.Version | String | The version of the policy. |
| AWS.Lambda.Policy.Id | String | The ID of the policy. |
| AWS.Lambda.Policy.Statement.Sid | String | The statement ID within the policy. |
| AWS.Lambda.Policy.Statement.Effect | String | The effect (allow/deny) specified in the policy statement. |
| AWS.Lambda.Policy.Statement.Principal.AWS | String | The AWS principal ARN specified in the AWS Lambda policy statement. |
| AWS.Lambda.Policy.Statement.Action | String | The action specified in the AWS Lambda policy statement. |
| AWS.Lambda.Policy.Statement.Resource | String | The resource ARN specified in the AWS Lambda policy statement. |
| AWS.Lambda.RevisionId | String | A unique identifier for the current revision of the policy. |
Command example#
!aws-lambda-get-policy functionName="test"
Context Example#
Human Readable Output#
Policy#
Action Effect Id Resource RevisionId Sid Version lambda Allow default arn:aws:dummy-api:dummy:12345678:dummy///test 1111-1111-111-111-11111 arn:aws:dummy-api:dummy:12345678:dummy///test 2015-10-17
aws-lambda-list-versions-by-function#
Returns a list of versions, with the version-specific configuration of each.
Base Command#
aws-lambda-list-versions-by-function
Input#
| Argument Name | Description | Required |
|---|---|---|
| region | The AWS Region. If not specified, the default region will be used. Possible values are: us-east-1, us-east-2, us-west-1, us-west-2, ca-central-1, eu-west-1, eu-central-1, eu-west-2, ap-northeast-1, ap-northeast-2, ap-southeast-1, ap-southeast-2, ap-south-1, sa-east-1, eu-north-1, eu-west-3. | Optional |
| roleArn | The Amazon Resource Name (ARN) of the role to assume. | Optional |
| roleSessionName | An identifier for the assumed role session. | Optional |
| roleSessionDuration | The duration, in seconds, of the role session. The value can range from 900 seconds (15 minutes) up to the maximum session duration setting for the role. | Optional |
| functionName | The name of the Lambda function, version, or alias. You can append a version number or alias to any of the formats. The length constraint applies only to the full ARN. If you specify only the function name, it is limited to 64 characters in length. | Required |
| Marker | Specify the pagination token that’s returned by a previous request to retrieve the next page of results. | Optional |
| MaxItems | The maximum number of versions to return. Note that ListVersionsByFunction returns a maximum of 50 items in each response, even if you set the number higher. | Optional |
Context Output#
| Path | Type | Description |
|---|---|---|
| AWS.Lambda.NextMarker | String | The pagination token that's included if more results are available. |
| AWS.Lambda.Versions.FunctionName | String | The name of the function. |
| AWS.Lambda.Versions.FunctionArn | String | The function’s Amazon Resource Name (ARN). |
| AWS.Lambda.Versions.Runtime | String | The identifier of the function’s runtime. Runtime is required if the deployment package is a .zip file archive. |
| AWS.Lambda.Versions.Role | String | The function’s execution role. |
| AWS.Lambda.Versions.Handler | String | The function that Lambda calls to begin running your function. |
| AWS.Lambda.Versions.CodeSize | Number | The size of the function’s deployment package, in bytes. |
| AWS.Lambda.Versions.Description | String | The function’s description. |
| AWS.Lambda.Versions.Timeout | Number | The amount of time in seconds that Lambda allows a function to run before stopping it. |
| AWS.Lambda.Versions.MemorySize | Number | The amount of memory available to the function at runtime. |
| AWS.Lambda.Versions.LastModified | String | The date and time that the function was last updated, in ISO-8601 format (YYYY-MM-DDThh:mm:ss.sTZD). |
| AWS.Lambda.Versions.CodeSha256 | String | The SHA256 hash of the function’s deployment package. |
| AWS.Lambda.Versions.Version | String | The version of the Lambda function. |
| AWS.Lambda.Versions.VpcConfig.SubnetIds | String | A list of VPC subnet IDs. |
| AWS.Lambda.Versions.VpcConfig.SecurityGroupIds | String | A list of VPC security group IDs. |
| AWS.Lambda.Versions.VpcConfig.VpcId | String | The ID of the VPC. |
| AWS.Lambda.Versions.DeadLetterConfig.TargetArn | String | The Amazon Resource Name (ARN) of an Amazon SQS queue or Amazon SNS topic. |
| AWS.Lambda.Versions.Environment.Variables.string | String | Environment variable key-value pairs. Omitted from CloudTrail logs. |
| AWS.Lambda.Versions.Environment.Error.ErrorCode | String | The error code for environment variables that couldn't be applied. |
| AWS.Lambda.Versions.Environment.Error.Message | String | The error message for environment variables that couldn't be applied. |
| AWS.Lambda.Versions.KMSKeyArn | String | The ARN of the KMS key used to encrypt the function's environment variables. |
| AWS.Lambda.Versions.TracingConfig.Mode | String | The tracing mode for the Lambda function. |
| AWS.Lambda.Versions.MasterArn | String | The ARN of the main function for Lambda@Edge functions. |
| AWS.Lambda.Versions.FunctionVersion | String | The specific function version. |
| AWS.Lambda.Versions.Tags | Object | The tags assigned to the Lambda function. |
| AWS.Lambda.Versions.State | String | The current state of the function. When the state is Inactive, you can reactivate the function by invoking it. |
| AWS.Lambda.Versions.StateReason | String | The reason for the function’s current state. |
| AWS.Lambda.Versions.StateReasonCode | String | The reason code for the current state of the function. |
| AWS.Lambda.Versions.LastUpdateStatus | String | The status of the last update that was performed on the function. This is first set to Successful after function creation completes. |
| AWS.Lambda.Versions.LastUpdateStatusReason | String | The reason for the last update that was performed on the function. |
| AWS.Lambda.Versions.LastUpdateStatusReasonCode | String | The reason code for the last update operation status. |
| AWS.Lambda.Versions.PackageType | String | The type of deployment package. Set to Image for container image and set Zip for .zip file archive. |
| AWS.Lambda.Versions.ImageConfigResponse.ImageConfigError.ErrorCode | String | The error code for image configuration. |
| AWS.Lambda.Versions.ImageConfigResponse.ImageConfigError.Message | String | The error message for image configuration. |
| AWS.Lambda.Versions.ImageConfigResponse.ImageConfigError.Type | String | The error type for image configuration. |
| AWS.Lambda.Versions.ImageConfigResponse.ImageConfig | Object | The image configuration values. |
Command example#
!aws-lambda-list-versions-by-function functionName=test
Context Example#
Human Readable Output#
Versions#
Function Name Role Runtime Last Modified State Description test dummy.111111:role/dummy-role/test-role-11111 nodejs18.x 2024-06-05T11:54:29.646+0000
aws-lambda-get-function-url-config#
Returns details about a Lambda function URL.
Base Command#
aws-lambda-get-function-url-config
Input#
| Argument Name | Description | Required |
|---|---|---|
| region | The AWS Region. If not specified, the default region will be used. Possible values are: us-east-1, us-east-2, us-west-1, us-west-2, ca-central-1, eu-west-1, eu-central-1, eu-west-2, ap-northeast-1, ap-northeast-2, ap-southeast-1, ap-southeast-2, ap-south-1, sa-east-1, eu-north-1, eu-west-3. | Optional |
| roleArn | The Amazon Resource Name (ARN) of the role to assume. | Optional |
| roleSessionName | An identifier for the assumed role session. | Optional |
| roleSessionDuration | The duration, in seconds, of the role session. The value can range from 900 seconds (15 minutes) up to the maximum session duration setting for the role. | Optional |
| functionName | The name of the Lambda function, version, or alias. You can append a version number or alias to any of the formats. The length constraint applies only to the full ARN. If you specify only the function name, it is limited to 64 characters in length. | Required |
| qualifier | The alias name. | Optional |
Context Output#
| Path | Type | Description |
|---|---|---|
| AWS.Lambda.FunctionURLConfig.FunctionUrl | String | The HTTP URL endpoint for the function. |
| AWS.Lambda.FunctionURLConfig.FunctionArn | String | The Amazon Resource Name (ARN) of your function. |
| AWS.Lambda.FunctionURLConfig.AuthType | String | The type of authentication that the function URL uses. Set to AWS_IAM if you want to restrict access to authenticated users only. Set to NONE if you want to bypass IAM authentication to create a public endpoint. |
| AWS.Lambda.FunctionURLConfig.Cors.AllowCredentials | Boolean | Whether to allow cookies or other credentials in requests to the function URL. The default is false. |
| AWS.Lambda.FunctionURLConfig.Cors.AllowHeaders | List | The HTTP headers that origins can include in requests to the function URL. For example Date, Keep-Alive, X-Custom-Header. |
| AWS.Lambda.FunctionURLConfig.Cors.AllowMethods | List | The HTTP methods that are allowed when calling the function URL. For example GET, POST, DELETE, or the wildcard character ( *). |
| AWS.Lambda.FunctionURLConfig.Cors.AllowOrigins | List | The origins that can access the function URL.You can list any number of specific origins, separated by a comma. For example https://www.example.com, http://localhost:8080. Alternatively, you can grant access to all origins using the wildcard character ( *). |
| AWS.Lambda.FunctionURLConfig.Cors.ExposeHeaders | List | The HTTP headers in the function response that you want to expose to origins that call the function URL. For example Date, Keep-Alive, X-Custom-Header. |
| AWS.Lambda.FunctionURLConfig.Cors.MaxAge | Number | The maximum amount of time, in seconds, that web browsers can cache results of a preflight request. By default, this is set to 0, which means that the browser doesn’t cache results. |
| AWS.Lambda.FunctionURLConfig.CreationTime | String | When the function URL was created, in ISO-8601 format (YYYY-MM-DDThh:mm:ss.sTZD). |
| AWS.Lambda.FunctionURLConfig.LastModifiedTime | String | When the function URL configuration was last updated, in ISO-8601 format (YYYY-MM-DDThh:mm:ss.sTZD). |
| AWS.Lambda.FunctionURLConfig.InvokeMode | String | Use one of the following options: BUFFERED – This is the default option. Lambda invokes your function using the Invoke API operation. Invocation results are available when the payload is complete. The maximum payload size is 6 MB. RESPONSE_STREAM – Your function streams payload results as they become available. Lambda invokes your function using the InvokeWithResponseStream API operation. The maximum response payload size is 20 MB, however, you can request a quota increase. |
Command example#
!aws-lambda-get-function-url-config functionName="test"
Context Example#
Human Readable Output#
Function URL Config#
Auth Type Creation Time Function Arn Function Url Invoke Mode Last Modified Time NONE 2024-05-02T07:23:12.573458Z dummy.111111:role/dummy/test-11111 hxxps://dummy.com/ BUFFERED 2024-05-02T07:23:12.573458Z
aws-lambda-get-function-configuration#
Returns the version-specific settings of a Lambda function or version. The output includes only options that can vary between versions of a function.
Base Command#
aws-lambda-get-function-configuration
Input#
| Argument Name | Description | Required |
|---|---|---|
| region | The AWS Region. If not specified, the default region will be used. Possible values are: us-east-1, us-east-2, us-west-1, us-west-2, ca-central-1, eu-west-1, eu-central-1, eu-west-2, ap-northeast-1, ap-northeast-2, ap-southeast-1, ap-southeast-2, ap-south-1, sa-east-1, eu-north-1, eu-west-3. | Optional |
| roleArn | The Amazon Resource Name (ARN) of the role to assume. | Optional |
| roleSessionName | An identifier for the assumed role session. | Optional |
| roleSessionDuration | The duration, in seconds, of the role session. The value can range from 900 seconds (15 minutes) up to the maximum session duration setting for the role. | Optional |
| functionName | The name of the Lambda function, version, or alias. You can append a version number or alias to any of the formats. The length constraint applies only to the full ARN. If you specify only the function name, it is limited to 64 characters in length. | Required |
| qualifier | Specify a version or alias to get details about a published version of the function. | Optional |
Context Output#
| Path | Type | Description |
|---|---|---|
| AWS.Lambda.FunctionConfig.FunctionName | String | The name of the function. |
| AWS.Lambda.FunctionConfig.FunctionArn | String | The function’s Amazon Resource Name (ARN). |
| AWS.Lambda.FunctionConfig.Runtime | String | The identifier of the function’s runtime. Runtime is required if the deployment package is a .zip file archive. |
| AWS.Lambda.FunctionConfig.Role | String | The function’s execution role. |
| AWS.Lambda.FunctionConfig.Handler | String | The function that Lambda calls to begin running your function. |
| AWS.Lambda.FunctionConfig.CodeSize | Number | The size of the function’s deployment package, in bytes. |
| AWS.Lambda.FunctionConfig.Description | String | The function’s description. |
| AWS.Lambda.FunctionConfig.Timeout | Number | The amount of time in seconds that Lambda allows a function to run before stopping it. |
| AWS.Lambda.FunctionConfig.MemorySize | Number | The amount of memory available to the function at runtime. |
| AWS.Lambda.FunctionConfig.LastModified | String | The date and time that the function was last updated, in ISO-8601 format (YYYY-MM-DDThh:mm:ss.sTZD). |
| AWS.Lambda.FunctionConfig.CodeSha256 | String | The SHA256 hash of the function’s deployment package. |
| AWS.Lambda.FunctionConfig.Version | String | The version of the Lambda function. |
| AWS.Lambda.FunctionConfig.VpcConfig.SubnetIds | String | A list of VPC subnet IDs. |
| AWS.Lambda.FunctionConfig.VpcConfig.SecurityGroupIds | String | A list of VPC security group IDs. |
| AWS.Lambda.FunctionConfig.VpcConfig.VpcId | String | The ID of the VPC. |
| AWS.Lambda.FunctionConfig.DeadLetterConfig.TargetArn | String | The Amazon Resource Name (ARN) of an Amazon SQS queue or Amazon SNS topic. |
| AWS.Lambda.FunctionConfig.Environment.Variables.string | String | Environment variable key-value pairs. Omitted from CloudTrail logs. |
| AWS.Lambda.FunctionConfig.Environment.Error.ErrorCode | String | The error code for environment variables that couldn't be applied. |
| AWS.Lambda.FunctionConfig.Environment.Error.Message | String | The error message for environment variables that couldn't be applied. |
| AWS.Lambda.FunctionConfig.KMSKeyArn | String | The ARN of the KMS key used to encrypt the function's environment variables. |
| AWS.Lambda.FunctionConfig.TracingConfig.Mode | String | The tracing mode for the Lambda function. |
| AWS.Lambda.FunctionConfig.MasterArn | String | The ARN of the main function for Lambda@Edge functions. |
| AWS.Lambda.FunctionConfig.FunctionVersion | String | The specific function version. |
| AWS.Lambda.FunctionConfig.Tags | Object | The tags assigned to the Lambda function. |
| AWS.Lambda.FunctionConfig.State | String | The current state of the function. When the state is Inactive, you can reactivate the function by invoking it. |
| AWS.Lambda.FunctionConfig.StateReason | String | The reason for the function’s current state. |
| AWS.Lambda.FunctionConfig.StateReasonCode | String | The reason code for the current state of the function. |
| AWS.Lambda.FunctionConfig.LastUpdateStatus | String | The status of the last update that was performed on the function. This is first set to Successful after function creation completes. |
| AWS.Lambda.FunctionConfig.LastUpdateStatusReason | String | The reason for the last update that was performed on the function. |
| AWS.Lambda.FunctionConfig.LastUpdateStatusReasonCode | String | The reason code for the last update operation status. |
| AWS.Lambda.FunctionConfig.PackageType | String | The type of deployment package. Set to Image for container image and set Zip for .zip file archive. |
| AWS.Lambda.FunctionConfig.ImageConfigResponse.ImageConfigError.ErrorCode | String | The error code for image configuration. |
| AWS.Lambda.FunctionConfig.ImageConfigResponse.ImageConfigError.Message | String | The error message for image configuration. |
| AWS.Lambda.FunctionConfig.ImageConfigResponse.ImageConfigError.Type | String | The error type for image configuration. |
| AWS.Lambda.FunctionConfig.ImageConfigResponse.ImageConfig | Object | The image configuration values. |
Command example#
!aws-lambda-get-function-configuration functionName=test
Context Example#
Human Readable Output#
Function Configuration#
Code Sha256 Description Function Arn Function Name Revision Id Runtime State 11111111 dummy:role/dummy-role/test-role-11111 test 11111-11111-111 nodejs18.x Active
aws-lambda-delete-function-url-config#
Deletes a Lambda function URL. When you delete a function URL, you can’t recover it. Creating a new function URL results in a different URL address.
Base Command#
aws-lambda-delete-function-url-config
Input#
| Argument Name | Description | Required |
|---|---|---|
| region | The AWS Region. If not specified, the default region will be used. Possible values are: us-east-1, us-east-2, us-west-1, us-west-2, ca-central-1, eu-west-1, eu-central-1, eu-west-2, ap-northeast-1, ap-northeast-2, ap-southeast-1, ap-southeast-2, ap-south-1, sa-east-1, eu-north-1, eu-west-3. | Optional |
| roleArn | The Amazon Resource Name (ARN) of the role to assume. | Optional |
| roleSessionName | An identifier for the assumed role session. | Optional |
| roleSessionDuration | The duration, in seconds, of the role session. The value can range from 900 seconds (15 minutes) up to the maximum session duration setting for the role. | Optional |
| functionName | The name of the Lambda function, version, or alias. You can append a version number or alias to any of the formats. The length constraint applies only to the full ARN. If you specify only the function name, it is limited to 64 characters in length. | Required |
| qualifier | Specify a version or alias to get details about a published version of the function. | Optional |
Context Output#
There is no context output for this command.
aws-lambda-delete-function#
Deletes a Lambda function. To delete a specific function version, use the Qualifier parameter. Otherwise, all versions and aliases are deleted.
Base Command#
aws-lambda-delete-function
Input#
| Argument Name | Description | Required |
|---|---|---|
| region | The AWS Region. If not specified, the default region will be used. Possible values are: us-east-1, us-east-2, us-west-1, us-west-2, ca-central-1, eu-west-1, eu-central-1, eu-west-2, ap-northeast-1, ap-northeast-2, ap-southeast-1, ap-southeast-2, ap-south-1, sa-east-1, eu-north-1, eu-west-3. | Optional |
| roleArn | The Amazon Resource Name (ARN) of the role to assume. | Optional |
| roleSessionName | An identifier for the assumed role session. | Optional |
| roleSessionDuration | The duration, in seconds, of the role session. The value can range from 900 seconds (15 minutes) up to the maximum session duration setting for the role. | Optional |
| functionName | The name of the Lambda function, version, or alias. You can append a version number or alias to any of the formats. The length constraint applies only to the full ARN. If you specify only the function name, it is limited to 64 characters in length. | Required |
| qualifier | Specify a version or alias to get details about a published version of the function. | Optional |
Context Output#
There is no context output for this command.