AWS policy

[loginov-rocks]

Hello! And thanks for your work 💪

Speaking about policies: https://github.com/appleboy/lambda-action#aws-policy - wouldn't it be enough to just have the limited permissions, like so:

{
    "Version": "2012-10-17",
    "Statement": [
        {
            "Effect": "Allow",
            "Action": [
                "lambda:CreateFunction",
                "lambda:UpdateFunctionCode",
                "lambda:UpdateFunctionConfiguration"
            ],
            "Resource": "arn:aws:lambda:${REGION}:${ACCUNT}:function:${LAMBDA_NAME}"
        }
    ]
}