From aad2506f2324aa8aaf0e949c2721afbaa2ddab39 Mon Sep 17 00:00:00 2001
From: David Berkowicz <david@patientping.com>
Date: Tue, 2 Jun 2020 16:17:48 -0400
Subject: [PATCH 1/2] Added lambda:ListVersionByFunction to codebuild policy

---
 lambda_function/ci.tf | 5 ++++-
 1 file changed, 4 insertions(+), 1 deletion(-)

diff --git a/lambda_function/ci.tf b/lambda_function/ci.tf
index 6f6c0a4..1608e1b 100644
--- a/lambda_function/ci.tf
+++ b/lambda_function/ci.tf
@@ -45,7 +45,10 @@ resource "aws_iam_role_policy" "codebuild" {
     {
       "Effect": "Allow",
       "Resource": "${aws_lambda_function.lambda.arn}",
-      "Action": "lambda:UpdateFunctionCode"
+      "Action": [
+        "lambda:UpdateFunctionCode",
+        "lambda:ListVersionsByFunction"
+      ]
     }
   ]
 }

From dd4e36fa912680a26abc918f49d216cb91143bc4 Mon Sep 17 00:00:00 2001
From: David Berkowicz <david@patientping.com>
Date: Tue, 2 Jun 2020 21:54:26 -0400
Subject: [PATCH 2/2] Added lambda:UpdateAlias to perms

---
 lambda_function/ci.tf | 3 ++-
 1 file changed, 2 insertions(+), 1 deletion(-)

diff --git a/lambda_function/ci.tf b/lambda_function/ci.tf
index 1608e1b..8f55927 100644
--- a/lambda_function/ci.tf
+++ b/lambda_function/ci.tf
@@ -47,7 +47,8 @@ resource "aws_iam_role_policy" "codebuild" {
       "Resource": "${aws_lambda_function.lambda.arn}",
       "Action": [
         "lambda:UpdateFunctionCode",
-        "lambda:ListVersionsByFunction"
+        "lambda:ListVersionsByFunction",
+        "lambda:UpdateAlias"
       ]
     }
   ]