From 835fce193d143bb601902f281fb68d32039fa72f Mon Sep 17 00:00:00 2001
From: Rob Dupuis <robd@robd.co.uk>
Date: Sun, 24 Jan 2021 19:21:55 +0000
Subject: [PATCH] Only recommended required IAM user permissions

---
 README.md | 30 +++++++++++++++---------------
 1 file changed, 15 insertions(+), 15 deletions(-)

diff --git a/README.md b/README.md
index e5588ad..603aa50 100644
--- a/README.md
+++ b/README.md
@@ -43,21 +43,21 @@ This action requires the following minimum set of permissions:
 
 ```
 {
-    "Version":"2012-10-17",
-    "Statement":[{
-        "Effect":"Allow",
-        "Action":[
-            "cloudformation:*"
-        ],
-        "Resource":"*"
-    },
-    {
-        "Effect":"Deny",
-        "Action":[
-            "cloudformation:DeleteStack"
-        ],
-        "Resource":"arn:aws:cloudformation:us-east-1:123456789012:stack/MyProductionStack/*"
-    }]
+    "Version": "2012-10-17",
+    "Statement": [
+        {
+            "Effect": "Allow",
+            "Action": [
+                "cloudformation:CreateStack",
+                "cloudformation:DescribeStacks",
+                "cloudformation:CreateChangeSet",
+                "cloudformation:DescribeChangeSet",
+                "cloudformation:DeleteChangeSet",
+                "cloudformation:ExecuteChangeSet"
+            ],
+            "Resource": "*"
+        }
+    ]
 }
 ```