https://avd.aquasec.com/misconfig/aws/iam/iam-role-policies/