DEV Community πŸ‘©β€πŸ’»πŸ‘¨β€πŸ’»

Discussion on: Secure AWS-CDK deployments with GitHub Actions

Collapse
wtho profile image
wtho

Great article!

What was missing for me, was the permission in the GitHub action to interact with GitHub's OIDC Token endpoint:

  deploy-infrastructure:
    runs-on: ubuntu-latest
+   permissions:
+     id-token: write
+     contents: read
    steps:
Enter fullscreen mode Exit fullscreen mode
Collapse
simonireilly profile image
Simon Author

Thanks for the feedback, I'll make the change to correct this πŸ‘