https://avd.aquasec.com/misconfig/aws/cloudfront/secure-cloudfront-origin/