New CloudFormation features fail to deploy because cfn_nag is not longer maintained

**Describe the bug**

`cfn_nag` is no longer maintained (last update over two years ago) and is missing support for recent CloudFormation features such as `Fn::ForEach`:

 * https://github.com/stelligent/cfn_nag/issues/621

It's not possible to work around this using the usual rule suppression mechanisms because cfn_nag itself is failing. 

I would propose either removing cfn_nag or adding a parameter to disable it in the CfCT CloudFormation template.

**To Reproduce**
Use CloudFormation features released in the last two years such as `Fn::ForEach`

**Expected behavior**
CfCT should support all modern CloudFormation features.

**Please complete the following information about the solution:**
- [x] Version: 2.7.1
- [x] Region: all
- [x] Was the solution modified from the version published on this repository? No

**Additional context**

Related issue: https://github.com/aws-solutions/aws-control-tower-customizations/issues/119


Provide feedback

Saved searches

Use saved searches to filter your results more quickly

New CloudFormation features fail to deploy because cfn_nag is not longer maintained #197

Metadata

Assignees

Labels

Type

Projects

Milestone

Relationships

Development

New CloudFormation features fail to deploy because cfn_nag is not longer maintained #197

Description

Metadata

Metadata

Assignees

Labels

Type

Projects

Milestone

Relationships

Development

Issue actions