Lambda functions
| Function | Runtime | Role | Last modified | Environment |
|---|---|---|---|---|
| keensafe-fraud-scorer | python3.11 | arn:aws:iam::549302118874:role/keensafe-lambda-exec | 2026-03-12T11:09:00Z | FRAUD_API_KEY=ks-fraud-FAKE-9f3a-LAB-only DB_PASSWORD=Pr0d-Db-LAB-Fake! |
| keensafe-customer-export | nodejs20.x | arn:aws:iam::549302118874:role/keensafe-lambda-exec | 2026-02-28T16:44:00Z | AWS_ACCESS_KEY_ID=AKIAFAKEKEYONLY12345 AWS_SECRET_ACCESS_KEY=FAKEsecret/Lab+OnlyDoNotUseInProductionAA S3_BUCKET=keensafe-private-backups-eu-west-1 |
| keensafe-statement-mailer | python3.11 | arn:aws:iam::549302118874:role/keensafe-lambda-exec | 2026-01-09T08:13:00Z | SES_REGION=eu-west-1 SMTP_PASSWORD=FAKEsesSmtpPassword/LAB+only |
Misconfigurations:
- All three functions ship Stripe keys, DB passwords and SMTP credentials in plaintext environment variables.
keensafe-lambda-execrole attachesAdministratorAccess.- Function code is downloadable at
/lambda/functions/<name>/code.