✅ Run Devolv DevOps Toolkit tools directly in GitHub workflows to secure, validate, and fix your IAM policies — automatically.
👉 Devolv Drift
- Detect IAM drift between your local files and deployed AWS policies
- Auto-create GitHub PRs to fix detected drift
- Open GitHub issues to track misalignments
- Keep your AWS environment in sync with your source of truth
👉 Devolv Validate
- Validate IAM JSON/YAML files for security issues (e.g., wildcards, risky permissions)
- Catch policy misconfigurations before they go live
- Block PRs with unsafe changes
✅ Keep IAM policies aligned: Stop worrying about manual AWS changes breaking your security posture — Devolv Drift finds and fixes them via PRs.
✅ Prevent bad policies from merging: Devolv Validate ensures only safe IAM policies land in main.
✅ Automate governance: Replace manual policy reviews with automatic CI/CD checks.
✅ No more surprise misconfigurations: Everything is caught at PR time — before deployment.
✅ Zero-touch fixes: Devolv creates issues and PRs so your team can focus on code, not IAM drift.
| Input | Description | Required |
|---|---|---|
tool |
Which tool to run (drift or validate) |
✅ yes |
policy-name |
IAM policy name (required for drift) | ❌ no (✅ yes if drift) |
path |
Path to local policy file or folder | ✅ yes |
- name: Run Devolv Drift Detection
uses: devolvdev/devolv-actions@v2
with:
tool: drift
policy-name: DevolvTestPolicyHuge
path: ./test-devolv-policy.json
approvers: "" # Empty by default; pass comma-separated list if needed
github-token: ${{ secrets.GITHUB_TOKEN }}
approval-anyway: false- name: Run Devolv IAM Validation
uses: devolvdev/devolv-actions@v2
with:
tool: validate
path: ./sample_policies➡ Devolv Drift Onboarding + CI/CD Guide
➡ Devolv Validate Docs
➡ Devolv Project on GitHub
Built with ❤️ to make IAM security effortless.
