β Run Devolv DevOps Toolkit tools directly in GitHub workflows to secure, validate, and fix your IAM policies β automatically.
π Devolv Drift
- Detect IAM drift between your local files and deployed AWS policies
- Auto-create GitHub PRs to fix detected drift
- Open GitHub issues to track misalignments
- Keep your AWS environment in sync with your source of truth
π Devolv Validate
- Validate IAM JSON/YAML files for security issues (e.g., wildcards, risky permissions)
- Catch policy misconfigurations before they go live
- Block PRs with unsafe changes
β Keep IAM policies aligned: Stop worrying about manual AWS changes breaking your security posture β Devolv Drift finds and fixes them via PRs.
β Prevent bad policies from merging: Devolv Validate ensures only safe IAM policies land in main.
β Automate governance: Replace manual policy reviews with automatic CI/CD checks.
β No more surprise misconfigurations: Everything is caught at PR time β before deployment.
β Zero-touch fixes: Devolv creates issues and PRs so your team can focus on code, not IAM drift.
| Input | Description | Required |
|---|---|---|
tool |
Which tool to run (drift or validate) |
β yes |
policy-name |
IAM policy name (required for drift) | β no (β
yes if drift) |
path |
Path to local policy file or folder | β yes |
- name: Run Devolv Drift Detection
uses: devolvdev/devolv-actions@v2
with:
tool: drift
policy-name: DevolvTestPolicyHuge
path: ./test-devolv-policy.json
approvers: "" # Empty by default; pass comma-separated list if needed
github-token: ${{ secrets.GITHUB_TOKEN }}
approval-anyway: false- name: Run Devolv IAM Validation
uses: devolvdev/devolv-actions@v2
with:
tool: validate
path: ./sample_policiesβ‘ Devolv Drift Onboarding + CI/CD Guide
β‘ Devolv Validate Docs
β‘ Devolv Project on GitHub
Built with β€οΈ to make IAM security effortless.