CDK Nag suppression entry for build policies. Deployers are responsible for providing meaningful justifications that explain why the suppressed rule is acceptable for their use case. Vague reasons (e.g. 'needed') should be flagged during code review.
CDK Nag rule ID to suppress (e.g. 'AwsSolutions-IAM5').
Readonlyreason
reason:string
Justification for suppressing the rule. Should clearly explain why the broad permission is required and what constraints (e.g. Conditions) limit its scope.
CDK Nag suppression entry for build policies. Deployers are responsible for providing meaningful justifications that explain why the suppressed rule is acceptable for their use case. Vague reasons (e.g. 'needed') should be flagged during code review.