{"slug":"iam-aws-codedeploy","cloud":"aws","service":"codedeploy","title":"AWS CodeDeploy (IAM)","description":"AWS CodeDeploy automates code deployments to any instance, including Amazon EC2 instances and on-premises servers.","category":"devops","common_permissions":["codedeploy:ListApplications","codedeploy:GetApplication","codedeploy:CreateDeployment","codedeploy:GetDeployment","codedeploy:ListDeployments","codedeploy:GetDeploymentGroup","codedeploy:ListDeploymentGroups","codedeploy:StopDeployment"],"least_privilege_example":"{\n  \"Version\": \"2012-10-17\",\n  \"Statement\": [\n    {\n      \"Effect\": \"Allow\",\n      \"Action\": [\n        \"codedeploy:ListApplications\",\n        \"codedeploy:GetApplication\",\n        \"codedeploy:CreateDeployment\",\n        \"codedeploy:GetDeployment\",\n        \"codedeploy:ListDeployments\",\n        \"codedeploy:GetDeploymentGroup\",\n        \"codedeploy:ListDeploymentGroups\",\n        \"codedeploy:StopDeployment\"\n      ],\n      \"Resource\": \"*\"\n    }\n  ]\n}","warnings":["Avoid codedeploy:* — grants full control including delete and modify of applications and deployment groups","Avoid codedeploy:DeleteApplication and codedeploy:DeleteDeploymentGroup unless explicitly needed for cleanup"],"docs":"https://servicereference.us-east-1.amazonaws.com/v1/codedeploy/codedeploy.json","tags":["iam","aws"],"last_verified":"2026-06-14T00:00:00.000Z","next_check":"2026-12-11T00:00:00.000Z","created_at":"2026-06-14T04:50:08.485Z","updated_at":"2026-06-14T04:50:08.485Z"}