How to find all actions/events that are able to create or modify a specific resource?
Below are 2 examples, however, the question is more general and applies to any resource:
-
I tried to capture all events that are able to create/update api gateway stage for automatic WAF hooking.
Initially, I identified 2 actions "CreateStage" and "UpdateStage" however, it turned out that apart from these 2 actions, the "CreateDeployment" action also is able to create stage without invoking the "CreateStage" event.
-
When we run "ec2:RunInstance" it will also generate or trigger another API (and therefore resources), such as "AttachVolume".
Searching each of the possible actions based on type parameters such as "stageName" seems unobvious and inefficient.
I am looking for a more efficient way to identify all events that may create or modify a particular resource.
Thank you for quick answer, unfortunately imho this method requires the action/event to be triggered first. In this way, I am not able to predict what resources will be created by actions that have not yet been triggered.