From b1c86e9dba7b6a6e249138dfb32dbf13fc85ecf1 Mon Sep 17 00:00:00 2001
From: Alexis Lucattini <awlucattini@gmail.com>
Date: Mon, 14 Oct 2024 12:45:59 +1100
Subject: [PATCH] cttsov2 job checker requires permissions to list executions

Error created when cdk-nag forced us to use our own policy statement instead of 'grantRead', missed this permission
---
 .../deploy/constructs/cttsov2-icav2-manager/index.ts             | 1 +
 1 file changed, 1 insertion(+)

diff --git a/lib/workload/stateless/stacks/cttso-v2-pipeline-manager/deploy/constructs/cttsov2-icav2-manager/index.ts b/lib/workload/stateless/stacks/cttso-v2-pipeline-manager/deploy/constructs/cttsov2-icav2-manager/index.ts
index 66b676619..d7fdc2544 100644
--- a/lib/workload/stateless/stacks/cttso-v2-pipeline-manager/deploy/constructs/cttsov2-icav2-manager/index.ts
+++ b/lib/workload/stateless/stacks/cttso-v2-pipeline-manager/deploy/constructs/cttsov2-icav2-manager/index.ts
@@ -137,6 +137,7 @@ export class Cttsov2Icav2PipelineManagerConstruct extends Construct {
           'states:ListActivities',
           'states:DescribeStateMachine',
           'states:DescribeActivity',
+          'states:ListExecutions',
         ],
         resources: [props.icav2CopyFilesStateMachineObj.stateMachineArn],
       })