tongueroo/codebuild.yml Secret

## codebuild.yml
---
Description: 'CodeBuild Project: cody-demo'
Resources:
  CodeBuild:
    Type: AWS::CodeBuild::Project
    Properties:
      Name: cody-demo
      Description: cody-demo
      Artifacts:
        Type: NO_ARTIFACTS
      ServiceRole:
        Ref: IamRole
      BadgeEnabled: true
      TimeoutInMinutes: 20
      LogsConfig:
        CloudWatchLogs:
          Status: ENABLED
      Source:
        Type: GITHUB
        GitSubmodulesConfig:
          FetchSubmodules: true
        BuildSpec: ".cody/buildspec.yml"
        ReportBuildStatus: true
        Location: https://github.com/tongueroo/cody-demo
      Environment:
        ComputeType: BUILD_GENERAL1_SMALL
        ImagePullCredentialsType: CODEBUILD
        PrivilegedMode: true
        Image: aws/codebuild/ruby:2.5.3-1.7.0
        Type: LINUX_CONTAINER
        EnvironmentVariables:
        - Type: PLAINTEXT
          Name: JETS_ENV
          Value: test
  IamRole:
    Type: AWS::IAM::Role
    Properties:
      AssumeRolePolicyDocument:
        Statement:
        - Action:
          - sts:AssumeRole
          Effect: Allow
          Principal:
            Service:
            - codebuild.amazonaws.com
        Version: '2012-10-17'
      Path: "/"
      Policies:
      - PolicyName: CodeBuildAccess
        PolicyDocument:
          Version: '2012-10-17'
          Statement:
          - Action:
            - logs:CreateLogGroup
            - logs:CreateLogStream
            - logs:PutLogEvents
            - ssm:DescribeDocumentParameters
            - ssm:DescribeParameters
            - ssm:GetParameter*
            Effect: Allow
            Resource: "*"
      ManagedPolicyArns:
      - arn:aws:iam::aws:policy/AmazonS3ReadOnlyAccess
	---
	Description: 'CodeBuild Project: cody-demo'
	Resources:
	CodeBuild:
	Type: AWS::CodeBuild::Project
	Properties:
	Name: cody-demo
	Description: cody-demo
	Artifacts:
	Type: NO_ARTIFACTS
	ServiceRole:
	Ref: IamRole
	BadgeEnabled: true
	TimeoutInMinutes: 20
	LogsConfig:
	CloudWatchLogs:
	Status: ENABLED
	Source:
	Type: GITHUB
	GitSubmodulesConfig:
	FetchSubmodules: true
	BuildSpec: ".cody/buildspec.yml"
	ReportBuildStatus: true
	Location: https://github.com/tongueroo/cody-demo
	Environment:
	ComputeType: BUILD_GENERAL1_SMALL
	ImagePullCredentialsType: CODEBUILD
	PrivilegedMode: true
	Image: aws/codebuild/ruby:2.5.3-1.7.0
	Type: LINUX_CONTAINER
	EnvironmentVariables:
	- Type: PLAINTEXT
	Name: JETS_ENV
	Value: test
	IamRole:
	Type: AWS::IAM::Role
	Properties:
	AssumeRolePolicyDocument:
	Statement:
	- Action:
	- sts:AssumeRole
	Effect: Allow
	Principal:
	Service:
	- codebuild.amazonaws.com
	Version: '2012-10-17'
	Path: "/"
	Policies:
	- PolicyName: CodeBuildAccess
	PolicyDocument:
	Version: '2012-10-17'
	Statement:
	- Action:
	- logs:CreateLogGroup
	- logs:CreateLogStream
	- logs:PutLogEvents
	- ssm:DescribeDocumentParameters
	- ssm:DescribeParameters
	- ssm:GetParameter*
	Effect: Allow
	Resource: "*"
	ManagedPolicyArns:
	- arn:aws:iam::aws:policy/AmazonS3ReadOnlyAccess