Y
Hacker News
new
|
ask
|
show
|
jobs
by
runamok
1110 days ago
That's a bit different and (like ec2 and other services) governed by IAM:Passrole. Whoever creates the lambda or ec2 needs to be allowed to assign that role. Otherwise it would allow privilege escalation.