2

We were in the process of setting up AWS Config Rules and came across a bug in one of the AWS managed rules. During our conversation with the AWS support person, he has revealed that the AWS Config Rules are processed by AWS Lambda functions behind the scenes.

I am curious to know what other AWS services use AWS Lambda behind the scenes. For example, AWS Systems Manager documents.

Thanks for your time.

John Rotenstein
  • 241,921
  • 22
  • 380
  • 470
devopseng
  • 39
  • 1
  • 3

1 Answers1

2

Not exhaustive list, but here are some more examples:

  • AWS::Include Transform which is a macro hosted by AWS CloudFormation, to insert boilerplate content into your templates.

  • AWS::Serverless Transform which is a macro hosted by AWS CloudFormation, takes an entire template written in the AWS Serverless Application Model (AWS SAM) syntax and transforms and expands it into a compliant AWS CloudFormation template

  • Secret Manager and its password rotation: If you use your secret for one of the supported Amazon RDS databases, then Secrets Manager provides the Lambda function for you. And Secrets Manager automatically customizes the function to meet the requirements of the specified database.

Marcin
  • 215,873
  • 14
  • 235
  • 294
  • Marcin, do you know how are aws systems manager documents processed behind the scenes? – devopseng May 09 '20 at 22:40
  • @devopseng You can check their source code. Just quick look now at `AWS-ASGExitStandby` document for instance shows that it does invoke some function `"FunctionName": "asg-state-change-lambda-{{automation:EXECUTION_ID}}",`. Others probably also use aws managed/created functions. – Marcin May 09 '20 at 22:43