feat: Included name and statements id for aws_lambda_permissions

Author: Marco Franceschi

src/services/iamPolicy/schema.graphql

@@ -32,6 +32,7 @@ type awsIamJSONPolicyStatement
   action: [String] @search(by: [hash])
   condition: [awsIamJSONPolicyCondition]
   effect: String @search(by: [hash, regexp])
+  sid: String @search(by: [hash, regexp])
   principal: [awsIamJSONPolicyPrincipal]
   resource: [String] @search(by: [hash])
   notAction: [String] @search(by: [hash])

src/services/lambda/format.ts

@@ -154,10 +154,15 @@ export default ({
     )
   }
 
+  const functionName = arn.split(':').pop()
+  const functionPolicy = formatIamJsonPolicy(policy)
+  const policyStatementIds = functionPolicy?.statement?.map(s => s.sid) ?? []
+
   return {
     accountId: account,
     arn,
     region,
+    name: functionName,
     description,
     handler,
     id: arn,
@@ -174,7 +179,8 @@ export default ({
     vpcConfig: formattedVpcConfig,
     policyRevisionId,
     rawPolicy: policy,
-    policy: formatIamJsonPolicy(policy),
+    policy: functionPolicy,
+    policyStatementIds,
     tags: formatTagsFromMap(Tags),
     eventSourceMappings: formatEventSourceMappings(eventSourceMappings),
     eventInvokeConfigs: formatEventInvokeConfigs(eventInvokeConfigs)

src/services/lambda/schema.graphql

@@ -78,6 +78,7 @@ type awsLambdaEventSourceMappings
 
 type awsLambda implements awsBaseService @key(fields: "arn") {
   description: String @search(by: [hash, regexp, fulltext])
+  name: String @search(by: [hash, regexp])
   handler: String @search(by: [hash, regexp])
   kmsKeyArn: String @search(by: [hash, regexp])
   lastModified: String @search(by: [hash, regexp])
@@ -93,6 +94,7 @@ type awsLambda implements awsBaseService @key(fields: "arn") {
   policyRevisionId: String @search(by: [hash, regexp])
   rawPolicy: String @search(by: [hash, regexp])
   policy: awsIamJSONPolicy
+  policyStatementIds: [String] @search(by: [hash, regexp])
   eventSourceMappings: [awsLambdaEventSourceMappings]
   eventInvokeConfigs: [awsLambdaEventInvokeConfig]
   tags: [awsRawTag]

src/types/generated.ts

@@ -3159,6 +3159,7 @@ export type AwsIamJsonPolicyStatement = {
   notResource?: Maybe<Array<Maybe<Scalars['String']>>>;
   principal?: Maybe<Array<Maybe<AwsIamJsonPolicyPrincipal>>>;
   resource?: Maybe<Array<Maybe<Scalars['String']>>>;
+  sid?: Maybe<Scalars['String']>;
 };
 
 export type AwsIamMfaDevice = {
@@ -3418,8 +3419,10 @@ export type AwsLambda = AwsBaseService & {
   kmsKeyArn?: Maybe<Scalars['String']>;
   lastModified?: Maybe<Scalars['String']>;
   memorySize?: Maybe<Scalars['Int']>;
+  name?: Maybe<Scalars['String']>;
   policy?: Maybe<AwsIamJsonPolicy>;
   policyRevisionId?: Maybe<Scalars['String']>;
+  policyStatementIds?: Maybe<Array<Maybe<Scalars['String']>>>;
   rawPolicy?: Maybe<Scalars['String']>;
   reservedConcurrentExecutions?: Maybe<Scalars['Int']>;
   runtime?: Maybe<Scalars['String']>;

src/utils/format.ts

@@ -124,6 +124,7 @@ export const formatIamJsonPolicy = (json: string): AwsIamJsonPolicy => {
         notAction: isArray(el.NotAction)
           ? el.NotAction
           : [toString(el.NotAction)],
+        sid: el.Sid,
         condition: formatCondition(el.Condition),
         effect: el.Effect,
         principal: formatPrincipal(el.Principal),