diff --git a/devops/aws-management/github-oidc-role.yml b/devops/aws-management/github-oidc-role.yml
index 108145afb..2d777e04f 100644
--- a/devops/aws-management/github-oidc-role.yml
+++ b/devops/aws-management/github-oidc-role.yml
@@ -366,6 +366,8 @@ Resources:
         Statement:
           - Action:
               # Allows AWS SAM CLI to upload to default managed S3 buckets
+              - s3:Get*
+              - s3:List*
               - s3:PutObject
             Effect: Allow
             Resource: arn:aws:s3:::aws-sam-cli-managed-default-samclisourcebucket*/*