Hi Vishal, it's been a while since I looked at this, but I assume you're referring to the permissions I gave my own AWS account for accessing CloudShell and then running the scripts. I'd have to look through everything again and just don't have the time, but I would not give any kind of full access to your own account or whatever account you might be using to run this process in some automated fashion. I only did that out of convenience for my demo solution, but to figure out what you need it's an exercise you would do for setting least privilege for any set of resources. Start with no access and work towards giving yourself the minimal access required. Sorry I don't have a definitive answer, but I'm too busy to spend any time on this at the moment. Cheers.