From 3fe74180992c2c49fd1871756628b7e11581b303 Mon Sep 17 00:00:00 2001
From: ScriptSmith <ScriptSmith@users.noreply.github.com>
Date: Wed, 4 Oct 2023 12:07:40 +1000
Subject: [PATCH] Allow more actions in the role

---
 deployment/lib/github-stack.ts | 5 +++++
 1 file changed, 5 insertions(+)

diff --git a/deployment/lib/github-stack.ts b/deployment/lib/github-stack.ts
index 79f1bd7..d4ab108 100644
--- a/deployment/lib/github-stack.ts
+++ b/deployment/lib/github-stack.ts
@@ -26,6 +26,11 @@ const appResourcePolicies = (tagKey: string, tagValue: string, stacks: string[])
       "ec2:DescribeSecurityGroups",
       "ec2:DeleteSecurityGroup",
       "ec2:CreateTags",
+      "ec2:DeleteTags",
+      "ec2:RevokeSecurityGroupIngress",
+      "ec2:RevokeSecurityGroupEgress",
+      "ec2:AuthorizeSecurityGroupIngress",
+      "ec2:AuthorizeSecurityGroupEgress",
       "iam:*",
       "events:*",
       "route53:*",