+−⟲ Github Android Runner non-prod EC2 Profile Role Github ActionSelf-hosted runner EC2 ExecutionBuildRole non-prod GithubActionRole trust Github assume trust Githubaction role Policies: S3uploading for non-prod, Get EC2 non-prod metadata ExecutionBuildRole prod assume Android Runner prod EC2 Profile Role Github ActionSelf-hosted runner EC2 workflow polling / checkout code request sts to assume role Sts create temp sessioncred S3 prod push build to S3using temp cred S3 non-prod Slack webhook Github Build for the IOS MAC Runner non-prod Github ActionSelf-hosted runner MacMini ExecutionBuildRole non-prod GithubActionRole trust Github assume trust Githubaction role Policies: S3uploading for non-prod ExecutionBuildRole prod assume MAC Runner prod Github ActionSelf-hosted runner MacMini workflow polling / checkout code Sts request sts to assume role create temp sessioncred S3 prod push build to S3using temp cred S3 non-prod Slack webhook Keychain for code signing push TestFlight generate OTA link to installinstead of TestFlight Fastlane Github codesigningcertificate repo AES decrypted AWS Build for the Android