From 0c85a4633a49e21d5272a984ce1e250631e5e7a5 Mon Sep 17 00:00:00 2001
From: Julius Adamek <julius.adamek@adesso.de>
Date: Mon, 13 Jun 2022 12:44:06 +0200
Subject: [PATCH] feat: set explicit permissions on s3 for syncer lambda

---
 modules/runner-binaries-syncer/policies/lambda-syncer.json | 4 ++--
 1 file changed, 2 insertions(+), 2 deletions(-)

diff --git a/modules/runner-binaries-syncer/policies/lambda-syncer.json b/modules/runner-binaries-syncer/policies/lambda-syncer.json
index 444dfd6ac8..7ecff826c1 100644
--- a/modules/runner-binaries-syncer/policies/lambda-syncer.json
+++ b/modules/runner-binaries-syncer/policies/lambda-syncer.json
@@ -6,8 +6,8 @@
       "Action": [
         "s3:GetObjectTagging",
         "s3:GetObjectVersionTagging",
-        "s3:PutObject*",
-        "s3:RequestObjectTag*"
+        "s3:PutObject",
+        "s3:PutObjectTagging"
       ],
       "Resource": ["${s3_resource_arn}"]
     }