Very obscure error message for the problem at hand trying to deploy a CloudFormation stack with malformed resource
I got this error in a CloudFormation stack which was not very helpful at all.
Legacy parsing? What is that? I thought maybe they had updated the CloudFormation template version when I wasn’t looking but no:
The version is option and hasn’t been changed. Ever.
I found this post but it too was not helpful at all. It says to look in CloudTrail for more information.
In my latest blog series on automating cybersecurity metrics I explained how to add the error column to CloudTrail event history. CloudTrail doesn’t report this error at all.
As it turns out, in this particular case, I had a resource where I was trying to use AWS pseudo parameters, but I forgot to add a “Sub” in front of the resource:
Should have been this:
Perhaps the AWS parser could identify that the string contains ${ and there is no Sub or any other command at the beginning of the value and report an better error message.
I wrote about a similar MalformedPolicyDocument error here:
Teri Radichel
If you liked this story please clap and follow:
Medium: Teri Radichel or Email List: Teri Radichel
Twitter: @teriradichel or @2ndSightLab
Requests services via LinkedIn: Teri Radichel or IANS Research
© 2nd Sight Lab 2022
____________________________________________
Author:
Cybersecurity for Executives in the Age of Cloud on Amazon
Need Cloud Security Training? 2nd Sight Lab Cloud Security Training
Is your cloud secure? Hire 2nd Sight Lab for a penetration test or security assessment.
Have a Cybersecurity or Cloud Security Question? Ask Teri Radichel by scheduling a call with IANS Research.
Cybersecurity & Cloud Security Resources by Teri Radichel: Cybersecurity and Cloud security classes, articles, white papers, presentations, and podcasts
