iam-least-privilege
Safeguard articles tagged "iam-least-privilege" — guides, analysis, and best practices for software supply chain and application security.
5 articles
GCP IAM Best Practices: Least Privilege on Google Cloud
Principle-driven Google Cloud IAM guidance: avoiding primitive roles, service account hygiene, Workload Identity Federation, the IAM Recommender, and inheritance — with gcloud and Terraform examples.
Azure IAM and RBAC Best Practices
A question-driven guide to Azure identity and access management: Entra ID vs Azure RBAC, scoping assignments, managed identities, PIM, and Conditional Access — with az CLI and Terraform examples.
AWS Lambda Security: A Deep Dive Into the Function Attack Surface
An attack-surface walkthrough of AWS Lambda security — execution roles, resource-based policies, environment-variable secrets, function URLs, and dependency layers — with IAM policy and CLI examples.
10 serverless security best practices
10 concrete, numbers-backed serverless security practices covering IAM least privilege, dependency SBOMs, event injection, and secrets management.
What is AWS CloudFormation Security
What is CloudFormation security? A practical breakdown of IAM least privilege, drift detection, secret scanning, and template misconfigurations that cause breaches.