Open chrislovecnm opened 2 years ago
I am noticing that we are using iam::aws:policy/AmazonS3FullAccess for the build-ctlr. These permission see a bit broad.
iam::aws:policy/AmazonS3FullAccess
Install
We only allow the build-ctr iam role to have full access to the buckets that we create.
We are giving it iam::aws:policy/AmazonS3FullAccess
Summary
I am noticing that we are using
iam::aws:policy/AmazonS3FullAccessfor the build-ctlr. These permission see a bit broad.Steps to reproduce the behavior
Install
Expected behavior
We only allow the build-ctr iam role to have full access to the buckets that we create.
Actual behavior
We are giving it
iam::aws:policy/AmazonS3FullAccess