AWS CodeBuild announces support for project ARN and build ARN IAM condition keys

AWS CodeBuild announces support for codebuild:projectArn and codebuild:buildArn as IAM condition keys. These two new condition keys can be used in IAM policies to restrict the ARN of the project or build that originated the request. Starting today, CodeBuild will automatically add the new codebuild:projectArn and codebuild:buildArn condition keys to the request context of all AWS API calls made within the build. You can use the Condition element in your IAM policy to compare the codebuild:projectArn condition key in the request context with values that you specify in your policy. This capability allows you to implement advanced security controls for the AWS API calls originating from within your builds. For example, you can write conditional policies using the new codebuild:projectArn condition key to grant permissions to AWS API calls only if those originate from inside a build for the specified project. This feature is available in all regions where CodeBuild is offered. For more information about the AWS Regions where CodeBuild is available, see the [AWS Regions page](https://aws.amazon.com/about-aws/global-infrastructure/regional-product-services/). To learn more about CodeBuild’s condition keys, please visit our [documentation](https://docs.aws.amazon.com/service-authorization/latest/reference/list%5Fawscodebuild.html#awscodebuild-policy-keys). To learn more about how to get started with CodeBuild, visit the [AWS CodeBuild product page](https://aws.amazon.com/codebuild/).