diff --git a/web/deploy/terraform/modules/iam/policies/assume-role.json b/web/deploy/terraform/modules/iam/policies/assume-role.json
index e2ebcbaa..624dac22 100644
--- a/web/deploy/terraform/modules/iam/policies/assume-role.json
+++ b/web/deploy/terraform/modules/iam/policies/assume-role.json
@@ -3,15 +3,15 @@
     "Statement": [
         {
             "Effect": "Allow",
-	    "Principal": {
+        "Principal": {
                 "Federated": "arn:aws:iam::123456123456:oidc-provider/token.actions.githubusercontent.com"
             },
             "Action": "sts:AssumeRoleWithWebIdentity",
-	    "Condition": {
+        "Condition": {
                 "StringLike": {
                     "token.actions.githubusercontent.com:sub": [
-			"repo:nimh-dsst/osm:*"
-		    ]
+            "repo:nimh-dsst/osm:*"
+            ]
                 },
                 "StringEquals": {
                     "token.actions.githubusercontent.com:aud": "sts.amazonaws.com"
diff --git a/web/deploy/terraform/modules/iam/policies/gha-policy-nonadmin.json.tftpl b/web/deploy/terraform/modules/iam/policies/gha-policy-nonadmin.json.tftpl
index 7e6b5f6d..40d8ad29 100644
--- a/web/deploy/terraform/modules/iam/policies/gha-policy-nonadmin.json.tftpl
+++ b/web/deploy/terraform/modules/iam/policies/gha-policy-nonadmin.json.tftpl
@@ -10,14 +10,14 @@
                 "ecr:BatchCheckLayerAvailability",
                 "ecr:PutImage",
                 "ecr:BatchGetImage",
-		"s3:GetBucketEncryption",
-		"s3:GetBucketTagging",
-		"s3:PutBucketTagging",
-		"s3:GetObject",
-		"s3:PutObject",
-		"s3:ListObjectsV2",
-		"s3:ListBuckets",
-		"dynamodb:CreateTable",
+                "s3:GetBucketEncryption",
+                "s3:GetBucketTagging",
+                "s3:PutBucketTagging",
+                "s3:GetObject",
+                "s3:PutObject",
+                "s3:ListObjectsV2",
+                "s3:ListBuckets",
+                "dynamodb:CreateTable",
                 "dynamodb:DeleteTable",
                 "dynamodb:DescribeTable",
                 "dynamodb:ListTables",
@@ -27,7 +27,7 @@
                 "dynamodb:DeleteItem",
                 "dynamodb:Query",
                 "dynamodb:Scan"
-	    ],
+        ],
             "Resource": ${resources}
         },
         {
diff --git a/web/deploy/terraform/modules/iam/policies/gha-policy.json.tftpl b/web/deploy/terraform/modules/iam/policies/gha-policy.json.tftpl
index a8328ac6..278e6b0f 100644
--- a/web/deploy/terraform/modules/iam/policies/gha-policy.json.tftpl
+++ b/web/deploy/terraform/modules/iam/policies/gha-policy.json.tftpl
@@ -4,11 +4,11 @@
         {
             "Effect": "Allow",
             "Action": [
-	    	"ec2:*",
+            "ec2:*",
                 "ecr:*",
-		"s3:*",
-		"dynamodb:*"
-	    ],
+        "s3:*",
+        "dynamodb:*"
+        ],
             "Resource": ${resources}
         },
         {