diff --git a/cloudformation/cloudwatch-rum/template.yml b/cloudformation/cloudwatch-rum/template.yml
index 603dd92..de39c95 100644
--- a/cloudformation/cloudwatch-rum/template.yml
+++ b/cloudformation/cloudwatch-rum/template.yml
@@ -68,6 +68,10 @@ Resources:
       # https://docs.aws.amazon.com/ja_jp/aws-managed-policy/latest/reference/AmazonCloudWatchRUMFullAccess.html
       ManagedPolicyArns:
         - arn:aws:iam::aws:policy/AmazonCloudWatchRUMFullAccess
+    Metadata:
+      guard:
+        SuppressedRules:
+          - IAM_NO_INLINE_POLICY_CHECK
 
   CWRumAppMonitor:
     # https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-rum-appmonitor.html
diff --git a/cloudformation/static-web-site-distribution/template.yml b/cloudformation/static-web-site-distribution/template.yml
index ed89a4c..abd3199 100644
--- a/cloudformation/static-web-site-distribution/template.yml
+++ b/cloudformation/static-web-site-distribution/template.yml
@@ -41,7 +41,7 @@ Resources:
             Status: Enabled
             Prefix: "replicated/"
       LoggingConfiguration:
-        DestinationBucketName: !Ref ReplicationLogBucket
+        DestinationBucketName: !Ref ContentS3BucketReplica
         LogFilePrefix: "logs/"
 
   ContentBucketPolicy:
@@ -61,7 +61,7 @@ Resources:
               Bool:
                 "aws:SecureTransport": false
               NumericLessThan:
-                "s3:TlsVersion": "1.2"
+                "s3:TlsVersion": "1.3"
             Principal: "*"
 
   ContentBucketReplicationRole:
@@ -115,7 +115,6 @@ Resources:
         - S3_BUCKET_REPLICATION_ENABLED
         - S3_BUCKET_LOGGING_ENABLED
 
-
   ContentBucketReplicaPolicy:
     Type: AWS::S3::BucketPolicy
     Properties:
@@ -133,5 +132,5 @@ Resources:
               Bool:
                 "aws:SecureTransport": false
               NumericLessThan:
-                "s3:TlsVersion": "1.2"
+                "s3:TlsVersion": "1.3"
             Principal: "*"