Update nag suppressions with dynamic stack name

Author: kris-szlapa

packages/cdk/nagSuppressions.ts

@@ -3,6 +3,7 @@ import {Stack} from "aws-cdk-lib"
 import {NagPackSuppression, NagSuppressions} from "cdk-nag"
 
 export const nagSuppressions = (stack: Stack) => {
+  const stackName = stack.node.tryGetContext("stackName") || "epsam"
   // Suppress granular wildcard on log stream for SlackBot Lambda
   safeAddNagSuppression(
     stack,
@@ -76,7 +77,7 @@ export const nagSuppressions = (stack: Stack) => {
   // Suppress missing WAF on API stage for Apis construct
   safeAddNagSuppression(
     stack,
-    "/EpsAssistMeStack/Apis/EpsAssistApiGateway/ApiGatewayPr/DeploymentStage.prod/Resource",
+    "/EpsAssistMeStack/Apis/EpsAssistApiGatewayPr/ApiGateway/DeploymentStage.prod/Resource",
     [
       {
         id: "AwsSolutions-APIG3",
@@ -94,7 +95,7 @@ export const nagSuppressions = (stack: Stack) => {
         id: "AwsSolutions-IAM5",
         reason: "Bedrock Knowledge Base requires these permissions to access S3 documents and OpenSearch collection.",
         appliesTo: [
-          "Resource::<StorageDocsBucketDocsPrE128DCFC.Arn>/*",
+          `Resource::<StorageDocsBucket${stackName.replace(/-/g, "")}Docs*.Arn>/*`,
           "Action::bedrock:Delete*",
           "Resource::arn:aws:bedrock:eu-west-2:undefined:knowledge-base/*",
           "Resource::arn:aws:bedrock:eu-west-2:591291862413:knowledge-base/*",
@@ -147,7 +148,7 @@ export const nagSuppressions = (stack: Stack) => {
   // Suppress S3 server access logs for knowledge base documents bucket
   safeAddNagSuppression(
     stack,
-    "/EpsAssistMeStack/Storage/DocsBucket/DocsPr/Resource",
+    `/EpsAssistMeStack/Storage/DocsBucket/${stackName}-Docs/Resource`,
     [
       {
         id: "AwsSolutions-S1",