Right now there's no way to add any permissions to the EnvManager role that Copilot creates for an environment. However, users might want to add extra permissions to it. For example, when they use GitLab CICD and trigger CodeBuild to run copilot deploy, it would become problematic if it doesn't have sts:AssumeRole. Would be great to include this feature when we allow users to modify their env level resources.
Right now there's no way to add any permissions to the
EnvManagerrole that Copilot creates for an environment. However, users might want to add extra permissions to it. For example, when they use GitLab CICD and trigger CodeBuild to runcopilot deploy, it would become problematic if it doesn't havests:AssumeRole. Would be great to include this feature when we allow users to modify their env level resources.