fix: use a valid policy for ssm access #1124
Conversation
This resolves an issue where the previous policy template did not specify a valid resource argument for the second policy statement. The modified template should now apply without error.
|
Hey @ryancausey! 👋 Thank you for your contribution to the project. Please refer to the contribution rules for a quick overview of the process. Make sure that this PR clearly explains:
With submitting this PR you confirm that you hold the rights of the code added and agree that it will published under this LICENSE. The following ChatOps commands are supported:
Simply add a comment with the command in the first line. If you need to pass more information, separate it with a blank line from the command. This message was generated automatically. You are welcome to improve it. |
|
Have seen this today as well. Guess we better limit access to the exact resource. |
|
@ryancausey Could you please have a look at my last commit? I think it is better to not allow the Runner to access all SSM parameters. I know, the |
🤖 I have created a release *beep* *boop* --- ## [7.6.1](7.6.0...7.6.1) (2024-05-10) ### Bug Fixes * use a valid policy for ssm access ([#1124](#1124)) ([fec8c8a](fec8c8a)) --- This PR was generated with [Release Please](https://github.com/googleapis/release-please). See [documentation](https://github.com/googleapis/release-please#release-please). --------- Co-authored-by: cattle-ops-releaser-2[bot] <134548870+cattle-ops-releaser-2[bot]@users.noreply.github.com> Co-authored-by: github-actions[bot] <github-actions[bot]@users.noreply.github.com>
Description
This resolves an issue where the previous policy template did not specify a valid resource argument for the second policy statement. The modified template should now apply without error.
Migrations required
No
Verification
I applied this module to my runner setup and it resolved the issue.
Closes #1123