[ELI-702] - adding permissions

TOEL2 · TOEL2 · commit 358dc0ccb080 · 2026-03-25T22:48:15.000Z
diff --git a/infrastructure/stacks/iams-developer-roles/github_actions_policies.tf b/infrastructure/stacks/iams-developer-roles/github_actions_policies.tf
@@ -728,7 +728,8 @@ resource "aws_iam_policy" "code_signing_management" {
           "lambda:ListCodeSigningConfigs",
           "lambda:GetFunctionCodeSigningConfig",
           "lambda:ListTags",
-          "lambda:DeleteFunctionCodeSigningConfig"
+          "lambda:DeleteFunctionCodeSigningConfig",
+          "lambda:PutFunctionCodeSigningConfig"
         ],
         Resource = "*"
       },
diff --git a/infrastructure/stacks/iams-developer-roles/iams_permissions_boundary.tf b/infrastructure/stacks/iams-developer-roles/iams_permissions_boundary.tf
@@ -163,6 +163,7 @@ data "aws_iam_policy_document" "permissions_boundary" {
       "lambda:DeleteFunctionCodeSigningConfig",
       "lambda:PutFunctionCodeSigningConfig",
       "lambda:DeleteCodeSigningConfig",
+      "lambda:CreateCodeSigningConfig",
 
       # CloudWatch Logs - log management
       "logs:*",
