From d59c88f27b6cc40c91954de06461f32c8a6da223 Mon Sep 17 00:00:00 2001 From: Kyle Harding Date: Tue, 17 Dec 2024 14:24:12 -0500 Subject: [PATCH] Drop the client-side public-read ACL and inherit from the bucket Signed-off-by: Kyle Harding --- .github/workflows/yocto-build-deploy.yml | 3 +-- 1 file changed, 1 insertion(+), 2 deletions(-) diff --git a/.github/workflows/yocto-build-deploy.yml b/.github/workflows/yocto-build-deploy.yml index f292f3071..d0951ee64 100644 --- a/.github/workflows/yocto-build-deploy.yml +++ b/.github/workflows/yocto-build-deploy.yml @@ -649,7 +649,6 @@ jobs: continue-on-error: true env: SHARED_DOWNLOADS_DIR: ${{ github.workspace }}/shared/shared-downloads - S3_ACL: public-read S3_SSE: AES256 S3_URL: "s3://${{ env.DOWNLOADS_MIRROR_BUCKET }}/shared-downloads" S3_REGION: ${{ env.DOWNLOADS_MIRROR_REGION }} @@ -658,7 +657,7 @@ jobs: run: | sudo ln -sf "${{ github.workspace }}" /work ls -al "${SHARED_DOWNLOADS_DIR}/" - aws s3 sync --sse="${S3_SSE}" --acl="${S3_ACL}" "${SHARED_DOWNLOADS_DIR}/" "${S3_URL}/" \ + aws s3 sync --sse="${S3_SSE}" "${SHARED_DOWNLOADS_DIR}/" "${S3_URL}/" \ --exclude "*/*" --exclude "*.tmp" --size-only --follow-symlinks --no-progress # TODO: pre-install on self-hosted-runners