Is serverless insecure?

http://www.lambdashell.com
![image](https://user-images.githubusercontent.com/194400/44307113-86fcc580-a394-11e8-9e04-b091e90245d6.png)
via/discuss: https://news.ycombinator.com/item?id=17790631

Scrolling down the command history we see:
```sh
curl https://yypnj3yzaa.execute-api.us-west-1.amazonaws.com/dev/top-commands >> /tmp/foo.txt &
```
DO NOT attempt to run it on your Localhost!
But you can **`view`** the command list in a browser:
RAW:
![image](https://user-images.githubusercontent.com/194400/44307136-cdeabb00-a394-11e8-87c2-18d4d4a5ac92.png)

JSON: (_courtesy of Firefox Developer Edition's built-in JSON formatter..._)
![image](https://user-images.githubusercontent.com/194400/44307149-04c0d100-a395-11e8-865f-ca39a239b3f3.png)

In addition to being a _great_ test of AWS Lambda's security,
this quest is a good exercise in seeing popular "discovery" and "hacking" commands.

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Uh oh!

Is serverless insecure? #107

Metadata

Assignees

Labels

Type

Projects

Milestone

Relationships

Development

Is serverless insecure? #107

Description

Metadata

Metadata

Assignees

Labels

Type

Projects

Milestone

Relationships

Development

Issue actions