Pattern: API Gateway domain name uses outdated SSL/TLS protocols
Issue: -
You should not use outdated/insecure TLS versions for encryption. You should be using TLS v1.2+.
Resolution: Use the most modern TLS/SSL policies available.
Example of incorrect code:
resource "aws_api_gateway_domain_name" "bad_example" {
security_policy = "TLS_1_0"
}
Example of correct code:
resource "aws_api_gateway_domain_name" "good_example" {
security_policy = "TLS_1_2"
}