Merge pull request #33 from serverless-ca/update #45

	name: S3 Backup
	on:
	workflow_dispatch:
	push:
	branches:
	- main

	permissions:
	contents: read

	jobs:
	s3_backup:
	name: S3 Backup
	runs-on: ubuntu-latest

	permissions:
	id-token: write
	contents: read
	pull-requests: read
	checks: write
	steps:
	- name: Harden the runner (Audit all outbound calls)
	uses: step-security/harden-runner@0634a2670c59f64b4a01f0f96f84700a4088b9f0 # v2.12.0
	with:
	egress-policy: audit

	- name: checkout
	uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 # v4.2.2

	- name: get-name
	run: \|
	echo "REPO_NAME=$(basename ${{ github.repository }})" >> $GITHUB_ENV
	echo "LOWER_REPO_NAME=$(basename ${{ github.repository }} \| tr [:upper:] [:lower:])" >> $GITHUB_ENV

	- name: Configure AWS Credentials
	uses: aws-actions/configure-aws-credentials@e3dd6a429d7300a6a4c196c26e071d42e0343502 # v4.0.2
	with:
	role-to-assume: "${{ secrets.AWS_BACKUP_ROLE_PREFIX }}${{ env.LOWER_REPO_NAME }}"
	aws-region: "${{ secrets.AWS_REGION }}"

	- name: Back up repository to S3
	run: \|
	aws s3 sync . s3://"${{ secrets.BACKUP_S3_BUCKET }}"/${{ env.REPO_NAME }} --delete

Provide feedback