Hey, You've got this line: https://github.com/stelligent/devops-essentials/blob/master/samples/static/pipeline.yml#L125-L130 Allowing pretty much any S3 action. While above you have some lines to allow Get only actions + Put action only on specific buckets: https://github.com/stelligent/devops-essentials/blob/master/samples/static/pipeline.yml#L114-L124
Hey,
You've got this line:
https://github.com/stelligent/devops-essentials/blob/master/samples/static/pipeline.yml#L125-L130
Allowing pretty much any S3 action.
While above you have some lines to allow Get only actions + Put action only on specific buckets:
https://github.com/stelligent/devops-essentials/blob/master/samples/static/pipeline.yml#L114-L124