the easiest route seems to be to ask for an increase as necessary. playing devil's advocate here: why not have a shared role for basic lambda-api-gateway execution?
the basics so far are
•
AWSLambdaBasicExecutionRole
•
CloudWatchLambdaInsightsExecutionRolePolicy
• and a policy related to x-ray.
what security are we losing if they were to share a basic role configured just for that api-gateway and stack?
@Frank