diff --git a/.gitignore b/.gitignore index b099b76d011..2f0a426075f 100644 --- a/.gitignore +++ b/.gitignore @@ -17,7 +17,6 @@ data/chatbot/*.* # TF secret.auto.tfvars **/.terraform/* -*.tfstate *.tfstate.* override.tf override.tf.json diff --git a/terraform.tfstate b/terraform.tfstate new file mode 100644 index 00000000000..8f0be4e2c2f --- /dev/null +++ b/terraform.tfstate @@ -0,0 +1,3636 @@ +{ + "version": 4, + "terraform_version": "1.2.4", + "serial": 459, + "lineage": "55ec6427-4fe1-81cd-8c5e-93d440aa0585", + "outputs": {}, + "resources": [ + { + "module": "module.includes", + "mode": "data", + "type": "aws_availability_zones", + "name": "available", + "provider": "provider[\"registry.terraform.io/hashicorp/aws\"]", + "instances": [ + { + "schema_version": 0, + "attributes": { + "all_availability_zones": null, + "exclude_names": null, + "exclude_zone_ids": null, + "filter": null, + "group_names": [ + "us-east-1" + ], + "id": "us-east-1", + "names": [ + "us-east-1a", + "us-east-1b", + "us-east-1c", + "us-east-1d", + "us-east-1e", + "us-east-1f" + ], + "state": null, + "zone_ids": [ + "use1-az6", + "use1-az1", + "use1-az2", + "use1-az4", + "use1-az3", + "use1-az5" + ] + }, + "sensitive_attributes": [] + } + ] + }, + { + "module": "module.includes", + "mode": "data", + "type": "aws_eks_cluster", + "name": "cluster", + "provider": "provider[\"registry.terraform.io/hashicorp/aws\"]", + "instances": [ + { + "schema_version": 0, + "attributes": { + "arn": "arn:aws:eks:us-east-1:300326902600:cluster/snyk-demo-eks-w8w5o", + "certificate_authority": [ + { + "data": "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" + } + ], + "created_at": "2022-07-19 15:14:00.824 +0000 UTC", + "enabled_cluster_log_types": [], + "endpoint": "https://5B6D28277CA645CAF0C643A86FD3E768.gr7.us-east-1.eks.amazonaws.com", + "id": "snyk-demo-eks-w8w5o", + "identity": [ + { + "oidc": [ + { + "issuer": "https://oidc.eks.us-east-1.amazonaws.com/id/5B6D28277CA645CAF0C643A86FD3E768" + } + ] + } + ], + "kubernetes_network_config": [ + { + "service_ipv4_cidr": "172.20.0.0/16" + } + ], + "name": "snyk-demo-eks-w8w5o", + "platform_version": "eks.7", + "role_arn": "arn:aws:iam::300326902600:role/snyk-demo-eks-w8w5o20220719151337118700000003", + "status": "ACTIVE", + "tags": {}, + "version": "1.20", + "vpc_config": [ + { + "cluster_security_group_id": "sg-022562f8aa31f1407", + "endpoint_private_access": false, + "endpoint_public_access": true, + "public_access_cidrs": [ + "0.0.0.0/0" + ], + "security_group_ids": [ + "sg-00568d8e870d78093" + ], + "subnet_ids": [ + "subnet-018afd439677a419b", + "subnet-0740635e9b399247c", + "subnet-09b35110a487517bb" + ], + "vpc_id": "vpc-06a175864b219d14c" + } + ] + }, + "sensitive_attributes": [] + } + ] + }, + { + "module": "module.includes", + "mode": "data", + "type": "aws_eks_cluster_auth", + "name": "cluster", + "provider": "provider[\"registry.terraform.io/hashicorp/aws\"]", + "instances": [ + { + "schema_version": 0, + "attributes": { + "id": "snyk-demo-eks-w8w5o", + "name": "snyk-demo-eks-w8w5o", + "token": "k8s-aws-v1.aHR0cHM6Ly9zdHMuYW1hem9uYXdzLmNvbS8_QWN0aW9uPUdldENhbGxlcklkZW50aXR5JlZlcnNpb249MjAxMS0wNi0xNSZYLUFtei1BbGdvcml0aG09QVdTNC1ITUFDLVNIQTI1NiZYLUFtei1DcmVkZW50aWFsPUFLSUFVTDNIQTNORU1VSUxTSTZWJTJGMjAyMjA3MTklMkZ1cy1lYXN0LTElMkZzdHMlMkZhd3M0X3JlcXVlc3QmWC1BbXotRGF0ZT0yMDIyMDcxOVQxNTMwMjRaJlgtQW16LUV4cGlyZXM9MCZYLUFtei1TaWduZWRIZWFkZXJzPWhvc3QlM0J4LWs4cy1hd3MtaWQmWC1BbXotU2lnbmF0dXJlPTdlMGZjMzAwNTM0ZTMzMjI1MjczNGQxYjRhMzQwZGU5NjVhYTAwOGMzYTVkNTEwYjU3ZDliZWM1OGQ3YTkwYTc" + }, + "sensitive_attributes": [] + } + ] + }, + { + "module": "module.includes", + "mode": "managed", + "type": "random_string", + "name": "suffix", + "provider": "provider[\"registry.terraform.io/hashicorp/random\"]", + "instances": [ + { + "schema_version": 1, + "attributes": { + "id": "w8w5o", + "keepers": null, + "length": 5, + "lower": true, + "min_lower": 0, + "min_numeric": 0, + "min_special": 0, + "min_upper": 0, + "number": true, + "override_special": null, + "result": "w8w5o", + "special": false, + "upper": false + }, + "sensitive_attributes": [], + "private": "eyJzY2hlbWFfdmVyc2lvbiI6IjEifQ==", + "create_before_destroy": true + } + ] + }, + { + "module": "module.includes.module.eks", + "mode": "data", + "type": "aws_ami", + "name": "eks_worker", + "provider": "provider[\"registry.terraform.io/hashicorp/aws\"]", + "instances": [ + { + "index_key": 0, + "schema_version": 0, + "attributes": { + "architecture": "x86_64", + "arn": "arn:aws:ec2:us-east-1::image/ami-03b6d3012ad0824a1", + "block_device_mappings": [ + { + "device_name": "/dev/xvda", + "ebs": { + "delete_on_termination": "true", + "encrypted": "false", + "iops": "0", + "snapshot_id": "snap-027a25a4e1d2cf0db", + "throughput": "0", + "volume_size": "20", + "volume_type": "gp2" + }, + "no_device": "", + "virtual_name": "" + } + ], + "creation_date": "2022-06-29T04:29:36.000Z", + "description": "EKS Kubernetes Worker AMI with AmazonLinux2 image, (k8s: 1.20.15, docker: 20.10.13-2.amzn2, containerd: 1.4.13-3.amzn2)", + "ena_support": true, + "executable_users": null, + "filter": [ + { + "name": "name", + "values": [ + "amazon-eks-node-1.20-v*" + ] + } + ], + "hypervisor": "xen", + "id": "ami-03b6d3012ad0824a1", + "image_id": "ami-03b6d3012ad0824a1", + "image_location": "amazon/amazon-eks-node-1.20-v20220629", + "image_owner_alias": "amazon", + "image_type": "machine", + "kernel_id": null, + "most_recent": true, + "name": "amazon-eks-node-1.20-v20220629", + "name_regex": null, + "owner_id": "602401143452", + "owners": [ + "amazon" + ], + "platform": null, + "platform_details": "Linux/UNIX", + "product_codes": [], + "public": true, + "ramdisk_id": null, + "root_device_name": "/dev/xvda", + "root_device_type": "ebs", + "root_snapshot_id": "snap-027a25a4e1d2cf0db", + "sriov_net_support": "simple", + "state": "available", + "state_reason": { + "code": "UNSET", + "message": "UNSET" + }, + "tags": {}, + "usage_operation": "RunInstances", + "virtualization_type": "hvm" + }, + "sensitive_attributes": [] + } + ] + }, + { + "module": "module.includes.module.eks", + "mode": "data", + "type": "aws_caller_identity", + "name": "current", + "provider": "provider[\"registry.terraform.io/hashicorp/aws\"]", + "instances": [ + { + "schema_version": 0, + "attributes": { + "account_id": "300326902600", + "arn": "arn:aws:iam::300326902600:user/rickharp", + "id": "300326902600", + "user_id": "AIDAUL3HA3NEEKFYRKF2T" + }, + "sensitive_attributes": [] + } + ] + }, + { + "module": "module.includes.module.eks", + "mode": "data", + "type": "aws_iam_policy_document", + "name": "cluster_assume_role_policy", + "provider": "provider[\"registry.terraform.io/hashicorp/aws\"]", + "instances": [ + { + "schema_version": 0, + "attributes": { + "id": "2764486067", + "json": "{\n \"Version\": \"2012-10-17\",\n \"Statement\": [\n {\n \"Sid\": \"EKSClusterAssumeRole\",\n \"Effect\": \"Allow\",\n \"Action\": \"sts:AssumeRole\",\n \"Principal\": {\n \"Service\": \"eks.amazonaws.com\"\n }\n }\n ]\n}", + "override_json": null, + "override_policy_documents": null, + "policy_id": null, + "source_json": null, + "source_policy_documents": null, + "statement": [ + { + "actions": [ + "sts:AssumeRole" + ], + "condition": [], + "effect": "Allow", + "not_actions": [], + "not_principals": [], + "not_resources": [], + "principals": [ + { + "identifiers": [ + "eks.amazonaws.com" + ], + "type": "Service" + } + ], + "resources": [], + "sid": "EKSClusterAssumeRole" + } + ], + "version": "2012-10-17" + }, + "sensitive_attributes": [] + } + ] + }, + { + "module": "module.includes.module.eks", + "mode": "data", + "type": "aws_iam_policy_document", + "name": "cluster_deny_log_group", + "provider": "provider[\"registry.terraform.io/hashicorp/aws\"]", + "instances": [ + { + "index_key": 0, + "schema_version": 0, + "attributes": { + "id": "2675893060", + "json": "{\n \"Version\": \"2012-10-17\",\n \"Statement\": [\n {\n \"Sid\": \"\",\n \"Effect\": \"Deny\",\n \"Action\": \"logs:CreateLogGroup\",\n \"Resource\": \"*\"\n }\n ]\n}", + "override_json": null, + "override_policy_documents": null, + "policy_id": null, + "source_json": null, + "source_policy_documents": null, + "statement": [ + { + "actions": [ + "logs:CreateLogGroup" + ], + "condition": [], + "effect": "Deny", + "not_actions": [], + "not_principals": [], + "not_resources": [], + "principals": [], + "resources": [ + "*" + ], + "sid": "" + } + ], + "version": "2012-10-17" + }, + "sensitive_attributes": [] + } + ] + }, + { + "module": "module.includes.module.eks", + "mode": "data", + "type": "aws_iam_policy_document", + "name": "cluster_elb_sl_role_creation", + "provider": "provider[\"registry.terraform.io/hashicorp/aws\"]", + "instances": [ + { + "index_key": 0, + "schema_version": 0, + "attributes": { + "id": "3709839417", + "json": "{\n \"Version\": \"2012-10-17\",\n \"Statement\": [\n {\n \"Sid\": \"\",\n \"Effect\": \"Allow\",\n \"Action\": [\n \"ec2:DescribeInternetGateways\",\n \"ec2:DescribeAddresses\",\n \"ec2:DescribeAccountAttributes\"\n ],\n \"Resource\": \"*\"\n }\n ]\n}", + "override_json": null, + "override_policy_documents": null, + "policy_id": null, + "source_json": null, + "source_policy_documents": null, + "statement": [ + { + "actions": [ + "ec2:DescribeAccountAttributes", + "ec2:DescribeAddresses", + "ec2:DescribeInternetGateways" + ], + "condition": [], + "effect": "Allow", + "not_actions": [], + "not_principals": [], + "not_resources": [], + "principals": [], + "resources": [ + "*" + ], + "sid": "" + } + ], + "version": "2012-10-17" + }, + "sensitive_attributes": [] + } + ] + }, + { + "module": "module.includes.module.eks", + "mode": "data", + "type": "aws_iam_policy_document", + "name": "workers_assume_role_policy", + "provider": "provider[\"registry.terraform.io/hashicorp/aws\"]", + "instances": [ + { + "schema_version": 0, + "attributes": { + "id": "3778018924", + "json": "{\n \"Version\": \"2012-10-17\",\n \"Statement\": [\n {\n \"Sid\": \"EKSWorkerAssumeRole\",\n \"Effect\": \"Allow\",\n \"Action\": \"sts:AssumeRole\",\n \"Principal\": {\n \"Service\": \"ec2.amazonaws.com\"\n }\n }\n ]\n}", + "override_json": null, + "override_policy_documents": null, + "policy_id": null, + "source_json": null, + "source_policy_documents": null, + "statement": [ + { + "actions": [ + "sts:AssumeRole" + ], + "condition": [], + "effect": "Allow", + "not_actions": [], + "not_principals": [], + "not_resources": [], + "principals": [ + { + "identifiers": [ + "ec2.amazonaws.com" + ], + "type": "Service" + } + ], + "resources": [], + "sid": "EKSWorkerAssumeRole" + } + ], + "version": "2012-10-17" + }, + "sensitive_attributes": [] + } + ] + }, + { + "module": "module.includes.module.eks", + "mode": "data", + "type": "aws_partition", + "name": "current", + "provider": "provider[\"registry.terraform.io/hashicorp/aws\"]", + "instances": [ + { + "schema_version": 0, + "attributes": { + "dns_suffix": "amazonaws.com", + "id": "aws", + "partition": "aws", + "reverse_dns_prefix": "com.amazonaws" + }, + "sensitive_attributes": [] + } + ] + }, + { + "module": "module.includes.module.eks", + "mode": "data", + "type": "http", + "name": "wait_for_cluster", + "provider": "provider[\"registry.terraform.io/terraform-aws-modules/http\"]", + "instances": [ + { + "index_key": 0, + "schema_version": 0, + "attributes": { + "body": "ok", + "ca_certificate": "-----BEGIN CERTIFICATE-----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\ntUKbPKJhtxMubVkD7xqDwUydfXJToSqdEVYO\n-----END CERTIFICATE-----\n", + "id": "https://5B6D28277CA645CAF0C643A86FD3E768.gr7.us-east-1.eks.amazonaws.com/healthz", + "insecure": false, + "request_headers": null, + "response_headers": { + "Cache-Control": "no-cache, private", + "Content-Length": "2", + "Content-Type": "text/plain; charset=utf-8", + "Date": "Tue, 19 Jul 2022 15:30:24 GMT", + "X-Content-Type-Options": "nosniff", + "X-Kubernetes-Pf-Flowschema-Uid": "b71716d3-8f59-45c7-acb9-6671559654ff", + "X-Kubernetes-Pf-Prioritylevel-Uid": "3e4f50c4-120d-47e2-8087-2b80fc1d34e8" + }, + "timeout": 300, + "url": "https://5B6D28277CA645CAF0C643A86FD3E768.gr7.us-east-1.eks.amazonaws.com/healthz" + }, + "sensitive_attributes": [] + } + ] + }, + { + "module": "module.includes.module.eks", + "mode": "managed", + "type": "aws_autoscaling_group", + "name": "workers", + "provider": "provider[\"registry.terraform.io/hashicorp/aws\"]", + "instances": [ + { + "index_key": 0, + "schema_version": 0, + "attributes": { + "arn": "arn:aws:autoscaling:us-east-1:300326902600:autoScalingGroup:b1122b4f-8c41-4474-87be-97c8c2236954:autoScalingGroupName/snyk-demo-eks-w8w5o-worker-group-120220719152257543000000017", + "availability_zones": [ + "us-east-1a", + "us-east-1b", + "us-east-1c" + ], + "capacity_rebalance": false, + "default_cooldown": 300, + "desired_capacity": 2, + "enabled_metrics": [], + "force_delete": false, + "force_delete_warm_pool": false, + "health_check_grace_period": 300, + "health_check_type": "EC2", + "id": "snyk-demo-eks-w8w5o-worker-group-120220719152257543000000017", + "initial_lifecycle_hook": [], + "instance_refresh": [], + "launch_configuration": "snyk-demo-eks-w8w5o-worker-group-120220719152246632200000014", + "launch_template": [], + "load_balancers": [], + "max_instance_lifetime": 0, + "max_size": 3, + "metrics_granularity": "1Minute", + "min_elb_capacity": null, + "min_size": 1, + "mixed_instances_policy": [], + "name": "snyk-demo-eks-w8w5o-worker-group-120220719152257543000000017", + "name_prefix": "snyk-demo-eks-w8w5o-worker-group-1", + "placement_group": "", + "protect_from_scale_in": false, + "service_linked_role_arn": "arn:aws:iam::300326902600:role/aws-service-role/autoscaling.amazonaws.com/AWSServiceRoleForAutoScaling", + "suspended_processes": [ + "AZRebalance" + ], + "tag": [ + { + "key": "Name", + "propagate_at_launch": true, + "value": "snyk-demo-eks-w8w5o-worker-group-1-eks_asg" + }, + { + "key": "k8s.io/cluster/snyk-demo-eks-w8w5o", + "propagate_at_launch": true, + "value": "owned" + }, + { + "key": "kubernetes.io/cluster/snyk-demo-eks-w8w5o", + "propagate_at_launch": true, + "value": "owned" + } + ], + "tags": null, + "target_group_arns": [], + "termination_policies": [], + "timeouts": null, + "vpc_zone_identifier": [ + "subnet-018afd439677a419b", + "subnet-0740635e9b399247c", + "subnet-09b35110a487517bb" + ], + "wait_for_capacity_timeout": "10m", + "wait_for_elb_capacity": null, + "warm_pool": [] + }, + "sensitive_attributes": [], + "private": "eyJlMmJmYjczMC1lY2FhLTExZTYtOGY4OC0zNDM2M2JjN2M0YzAiOnsiZGVsZXRlIjo2MDAwMDAwMDAwMDB9fQ==", + "dependencies": [ + "module.includes.data.aws_availability_zones.available", + "module.includes.module.eks.aws_cloudwatch_log_group.this", + "module.includes.module.eks.aws_eks_cluster.this", + "module.includes.module.eks.aws_iam_instance_profile.workers", + "module.includes.module.eks.aws_iam_role.cluster", + "module.includes.module.eks.aws_iam_role.workers", + "module.includes.module.eks.aws_iam_role_policy_attachment.cluster_AmazonEKSClusterPolicy", + "module.includes.module.eks.aws_iam_role_policy_attachment.cluster_AmazonEKSServicePolicy", + "module.includes.module.eks.aws_iam_role_policy_attachment.cluster_AmazonEKSVPCResourceControllerPolicy", + "module.includes.module.eks.aws_iam_role_policy_attachment.workers_AmazonEC2ContainerRegistryReadOnly", + "module.includes.module.eks.aws_iam_role_policy_attachment.workers_AmazonEKSWorkerNodePolicy", + "module.includes.module.eks.aws_iam_role_policy_attachment.workers_AmazonEKS_CNI_Policy", + "module.includes.module.eks.aws_iam_role_policy_attachment.workers_additional_policies", + "module.includes.module.eks.aws_launch_configuration.workers", + "module.includes.module.eks.aws_security_group.cluster", + "module.includes.module.eks.aws_security_group.workers", + "module.includes.module.eks.aws_security_group_rule.cluster_egress_internet", + "module.includes.module.eks.aws_security_group_rule.cluster_https_worker_ingress", + "module.includes.module.eks.aws_security_group_rule.cluster_primary_ingress_workers", + "module.includes.module.eks.aws_security_group_rule.workers_egress_internet", + "module.includes.module.eks.aws_security_group_rule.workers_ingress_cluster", + "module.includes.module.eks.aws_security_group_rule.workers_ingress_cluster_https", + "module.includes.module.eks.aws_security_group_rule.workers_ingress_cluster_kubelet", + "module.includes.module.eks.aws_security_group_rule.workers_ingress_cluster_primary", + "module.includes.module.eks.aws_security_group_rule.workers_ingress_self", + "module.includes.module.eks.data.aws_ami.eks_worker", + "module.includes.module.eks.data.aws_ami.eks_worker_windows", + "module.includes.module.eks.data.aws_iam_instance_profile.custom_worker_group_iam_instance_profile", + "module.includes.module.eks.data.aws_iam_policy_document.cluster_assume_role_policy", + "module.includes.module.eks.data.aws_iam_policy_document.workers_assume_role_policy", + "module.includes.module.eks.data.aws_iam_role.custom_cluster_iam_role", + "module.includes.module.eks.data.aws_partition.current", + "module.includes.module.vpc.aws_subnet.private", + "module.includes.module.vpc.aws_vpc.this", + "module.includes.module.vpc.aws_vpc_ipv4_cidr_block_association.this", + "module.includes.random_string.suffix", + "module.sg.aws_security_group.worker_group_mgmt_one", + "module.sg.aws_security_group.worker_group_mgmt_two" + ], + "create_before_destroy": true + }, + { + "index_key": 1, + "schema_version": 0, + "attributes": { + "arn": "arn:aws:autoscaling:us-east-1:300326902600:autoScalingGroup:4f5545df-44ad-4f6b-b981-6920c7dc0f1a:autoScalingGroupName/snyk-demo-eks-w8w5o-worker-group-220220719152257542600000016", + "availability_zones": [ + "us-east-1a", + "us-east-1b", + "us-east-1c" + ], + "capacity_rebalance": false, + "default_cooldown": 300, + "desired_capacity": 1, + "enabled_metrics": [], + "force_delete": false, + "force_delete_warm_pool": false, + "health_check_grace_period": 300, + "health_check_type": "EC2", + "id": "snyk-demo-eks-w8w5o-worker-group-220220719152257542600000016", + "initial_lifecycle_hook": [], + "instance_refresh": [], + "launch_configuration": "snyk-demo-eks-w8w5o-worker-group-220220719152246632200000015", + "launch_template": [], + "load_balancers": [], + "max_instance_lifetime": 0, + "max_size": 3, + "metrics_granularity": "1Minute", + "min_elb_capacity": null, + "min_size": 1, + "mixed_instances_policy": [], + "name": "snyk-demo-eks-w8w5o-worker-group-220220719152257542600000016", + "name_prefix": "snyk-demo-eks-w8w5o-worker-group-2", + "placement_group": "", + "protect_from_scale_in": false, + "service_linked_role_arn": "arn:aws:iam::300326902600:role/aws-service-role/autoscaling.amazonaws.com/AWSServiceRoleForAutoScaling", + "suspended_processes": [ + "AZRebalance" + ], + "tag": [ + { + "key": "Name", + "propagate_at_launch": true, + "value": "snyk-demo-eks-w8w5o-worker-group-2-eks_asg" + }, + { + "key": "k8s.io/cluster/snyk-demo-eks-w8w5o", + "propagate_at_launch": true, + "value": "owned" + }, + { + "key": "kubernetes.io/cluster/snyk-demo-eks-w8w5o", + "propagate_at_launch": true, + "value": "owned" + } + ], + "tags": null, + "target_group_arns": [], + "termination_policies": [], + "timeouts": null, + "vpc_zone_identifier": [ + "subnet-018afd439677a419b", + "subnet-0740635e9b399247c", + "subnet-09b35110a487517bb" + ], + "wait_for_capacity_timeout": "10m", + "wait_for_elb_capacity": null, + "warm_pool": [] + }, + "sensitive_attributes": [], + "private": "eyJlMmJmYjczMC1lY2FhLTExZTYtOGY4OC0zNDM2M2JjN2M0YzAiOnsiZGVsZXRlIjo2MDAwMDAwMDAwMDB9fQ==", + "dependencies": [ + "module.includes.data.aws_availability_zones.available", + "module.includes.module.eks.aws_cloudwatch_log_group.this", + "module.includes.module.eks.aws_eks_cluster.this", + "module.includes.module.eks.aws_iam_instance_profile.workers", + "module.includes.module.eks.aws_iam_role.cluster", + "module.includes.module.eks.aws_iam_role.workers", + "module.includes.module.eks.aws_iam_role_policy_attachment.cluster_AmazonEKSClusterPolicy", + "module.includes.module.eks.aws_iam_role_policy_attachment.cluster_AmazonEKSServicePolicy", + "module.includes.module.eks.aws_iam_role_policy_attachment.cluster_AmazonEKSVPCResourceControllerPolicy", + "module.includes.module.eks.aws_iam_role_policy_attachment.workers_AmazonEC2ContainerRegistryReadOnly", + "module.includes.module.eks.aws_iam_role_policy_attachment.workers_AmazonEKSWorkerNodePolicy", + "module.includes.module.eks.aws_iam_role_policy_attachment.workers_AmazonEKS_CNI_Policy", + "module.includes.module.eks.aws_iam_role_policy_attachment.workers_additional_policies", + "module.includes.module.eks.aws_launch_configuration.workers", + "module.includes.module.eks.aws_security_group.cluster", + "module.includes.module.eks.aws_security_group.workers", + "module.includes.module.eks.aws_security_group_rule.cluster_egress_internet", + "module.includes.module.eks.aws_security_group_rule.cluster_https_worker_ingress", + "module.includes.module.eks.aws_security_group_rule.cluster_primary_ingress_workers", + "module.includes.module.eks.aws_security_group_rule.workers_egress_internet", + "module.includes.module.eks.aws_security_group_rule.workers_ingress_cluster", + "module.includes.module.eks.aws_security_group_rule.workers_ingress_cluster_https", + "module.includes.module.eks.aws_security_group_rule.workers_ingress_cluster_kubelet", + "module.includes.module.eks.aws_security_group_rule.workers_ingress_cluster_primary", + "module.includes.module.eks.aws_security_group_rule.workers_ingress_self", + "module.includes.module.eks.data.aws_ami.eks_worker", + "module.includes.module.eks.data.aws_ami.eks_worker_windows", + "module.includes.module.eks.data.aws_iam_instance_profile.custom_worker_group_iam_instance_profile", + "module.includes.module.eks.data.aws_iam_policy_document.cluster_assume_role_policy", + "module.includes.module.eks.data.aws_iam_policy_document.workers_assume_role_policy", + "module.includes.module.eks.data.aws_iam_role.custom_cluster_iam_role", + "module.includes.module.eks.data.aws_partition.current", + "module.includes.module.vpc.aws_subnet.private", + "module.includes.module.vpc.aws_vpc.this", + "module.includes.module.vpc.aws_vpc_ipv4_cidr_block_association.this", + "module.includes.random_string.suffix", + "module.sg.aws_security_group.worker_group_mgmt_one", + "module.sg.aws_security_group.worker_group_mgmt_two" + ], + "create_before_destroy": true + } + ] + }, + { + "module": "module.includes.module.eks", + "mode": "managed", + "type": "aws_eks_cluster", + "name": "this", + "provider": "provider[\"registry.terraform.io/hashicorp/aws\"]", + "instances": [ + { + "index_key": 0, + "schema_version": 0, + "attributes": { + "arn": "arn:aws:eks:us-east-1:300326902600:cluster/snyk-demo-eks-w8w5o", + "certificate_authority": [ + { + "data": "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" + } + ], + "created_at": "2022-07-19 15:14:00.824 +0000 UTC", + "enabled_cluster_log_types": [], + "encryption_config": [], + "endpoint": "https://5B6D28277CA645CAF0C643A86FD3E768.gr7.us-east-1.eks.amazonaws.com", + "id": "snyk-demo-eks-w8w5o", + "identity": [ + { + "oidc": [ + { + "issuer": "https://oidc.eks.us-east-1.amazonaws.com/id/5B6D28277CA645CAF0C643A86FD3E768" + } + ] + } + ], + "kubernetes_network_config": [ + { + "service_ipv4_cidr": "172.20.0.0/16" + } + ], + "name": "snyk-demo-eks-w8w5o", + "platform_version": "eks.7", + "role_arn": "arn:aws:iam::300326902600:role/snyk-demo-eks-w8w5o20220719151337118700000003", + "status": "ACTIVE", + "tags": {}, + "tags_all": {}, + "timeouts": { + "create": "30m", + "delete": "15m", + "update": "60m" + }, + "version": "1.20", + "vpc_config": [ + { + "cluster_security_group_id": "sg-022562f8aa31f1407", + "endpoint_private_access": false, + "endpoint_public_access": true, + "public_access_cidrs": [ + "0.0.0.0/0" + ], + "security_group_ids": [ + "sg-00568d8e870d78093" + ], + "subnet_ids": [ + "subnet-018afd439677a419b", + "subnet-0740635e9b399247c", + "subnet-09b35110a487517bb" + ], + "vpc_id": "vpc-06a175864b219d14c" + } + ] + }, + "sensitive_attributes": [], + "private": "eyJlMmJmYjczMC1lY2FhLTExZTYtOGY4OC0zNDM2M2JjN2M0YzAiOnsiY3JlYXRlIjoxODAwMDAwMDAwMDAwLCJkZWxldGUiOjkwMDAwMDAwMDAwMCwidXBkYXRlIjozNjAwMDAwMDAwMDAwfX0=", + "dependencies": [ + "module.includes.data.aws_availability_zones.available", + "module.includes.module.eks.aws_cloudwatch_log_group.this", + "module.includes.module.eks.aws_iam_role.cluster", + "module.includes.module.eks.aws_iam_role_policy_attachment.cluster_AmazonEKSClusterPolicy", + "module.includes.module.eks.aws_iam_role_policy_attachment.cluster_AmazonEKSServicePolicy", + "module.includes.module.eks.aws_iam_role_policy_attachment.cluster_AmazonEKSVPCResourceControllerPolicy", + "module.includes.module.eks.aws_security_group.cluster", + "module.includes.module.eks.aws_security_group.workers", + "module.includes.module.eks.aws_security_group_rule.cluster_egress_internet", + "module.includes.module.eks.aws_security_group_rule.cluster_https_worker_ingress", + "module.includes.module.eks.data.aws_iam_policy_document.cluster_assume_role_policy", + "module.includes.module.eks.data.aws_iam_role.custom_cluster_iam_role", + "module.includes.module.eks.data.aws_partition.current", + "module.includes.module.vpc.aws_subnet.private", + "module.includes.module.vpc.aws_vpc.this", + "module.includes.module.vpc.aws_vpc_ipv4_cidr_block_association.this", + "module.includes.random_string.suffix" + ], + "create_before_destroy": true + } + ] + }, + { + "module": "module.includes.module.eks", + "mode": "managed", + "type": "aws_iam_instance_profile", + "name": "workers", + "provider": "provider[\"registry.terraform.io/hashicorp/aws\"]", + "instances": [ + { + "index_key": 0, + "schema_version": 0, + "attributes": { + "arn": "arn:aws:iam::300326902600:instance-profile/snyk-demo-eks-w8w5o20220719152245663300000010", + "create_date": "2022-07-19T15:22:45Z", + "id": "snyk-demo-eks-w8w5o20220719152245663300000010", + "name": "snyk-demo-eks-w8w5o20220719152245663300000010", + "name_prefix": "snyk-demo-eks-w8w5o", + "path": "/", + "role": "snyk-demo-eks-w8w5o2022071915224389460000000e", + "tags": {}, + "tags_all": {}, + "unique_id": "AIPAUL3HA3NEAR6O7CEEZ" + }, + "sensitive_attributes": [], + "private": "bnVsbA==", + "dependencies": [ + "module.includes.data.aws_availability_zones.available", + "module.includes.module.eks.aws_cloudwatch_log_group.this", + "module.includes.module.eks.aws_eks_cluster.this", + "module.includes.module.eks.aws_iam_role.cluster", + "module.includes.module.eks.aws_iam_role.workers", + "module.includes.module.eks.aws_iam_role_policy_attachment.cluster_AmazonEKSClusterPolicy", + "module.includes.module.eks.aws_iam_role_policy_attachment.cluster_AmazonEKSServicePolicy", + "module.includes.module.eks.aws_iam_role_policy_attachment.cluster_AmazonEKSVPCResourceControllerPolicy", + "module.includes.module.eks.aws_security_group.cluster", + "module.includes.module.eks.aws_security_group.workers", + "module.includes.module.eks.aws_security_group_rule.cluster_egress_internet", + "module.includes.module.eks.aws_security_group_rule.cluster_https_worker_ingress", + "module.includes.module.eks.data.aws_iam_policy_document.cluster_assume_role_policy", + "module.includes.module.eks.data.aws_iam_policy_document.workers_assume_role_policy", + "module.includes.module.eks.data.aws_iam_role.custom_cluster_iam_role", + "module.includes.module.eks.data.aws_partition.current", + "module.includes.module.vpc.aws_subnet.private", + "module.includes.module.vpc.aws_vpc.this", + "module.includes.module.vpc.aws_vpc_ipv4_cidr_block_association.this", + "module.includes.random_string.suffix", + "module.sg.aws_security_group.worker_group_mgmt_one", + "module.sg.aws_security_group.worker_group_mgmt_two" + ], + "create_before_destroy": true + }, + { + "index_key": 1, + "schema_version": 0, + "attributes": { + "arn": "arn:aws:iam::300326902600:instance-profile/snyk-demo-eks-w8w5o2022071915224566320000000f", + "create_date": "2022-07-19T15:22:45Z", + "id": "snyk-demo-eks-w8w5o2022071915224566320000000f", + "name": "snyk-demo-eks-w8w5o2022071915224566320000000f", + "name_prefix": "snyk-demo-eks-w8w5o", + "path": "/", + "role": "snyk-demo-eks-w8w5o2022071915224389460000000e", + "tags": {}, + "tags_all": {}, + "unique_id": "AIPAUL3HA3NEDL6CVXJ3D" + }, + "sensitive_attributes": [], + "private": "bnVsbA==", + "dependencies": [ + "module.includes.data.aws_availability_zones.available", + "module.includes.module.eks.aws_cloudwatch_log_group.this", + "module.includes.module.eks.aws_eks_cluster.this", + "module.includes.module.eks.aws_iam_role.cluster", + "module.includes.module.eks.aws_iam_role.workers", + "module.includes.module.eks.aws_iam_role_policy_attachment.cluster_AmazonEKSClusterPolicy", + "module.includes.module.eks.aws_iam_role_policy_attachment.cluster_AmazonEKSServicePolicy", + "module.includes.module.eks.aws_iam_role_policy_attachment.cluster_AmazonEKSVPCResourceControllerPolicy", + "module.includes.module.eks.aws_security_group.cluster", + "module.includes.module.eks.aws_security_group.workers", + "module.includes.module.eks.aws_security_group_rule.cluster_egress_internet", + "module.includes.module.eks.aws_security_group_rule.cluster_https_worker_ingress", + "module.includes.module.eks.data.aws_iam_policy_document.cluster_assume_role_policy", + "module.includes.module.eks.data.aws_iam_policy_document.workers_assume_role_policy", + "module.includes.module.eks.data.aws_iam_role.custom_cluster_iam_role", + "module.includes.module.eks.data.aws_partition.current", + "module.includes.module.vpc.aws_subnet.private", + "module.includes.module.vpc.aws_vpc.this", + "module.includes.module.vpc.aws_vpc_ipv4_cidr_block_association.this", + "module.includes.random_string.suffix", + "module.sg.aws_security_group.worker_group_mgmt_one", + "module.sg.aws_security_group.worker_group_mgmt_two" + ], + "create_before_destroy": true + } + ] + }, + { + "module": "module.includes.module.eks", + "mode": "managed", + "type": "aws_iam_policy", + "name": "cluster_deny_log_group", + "provider": "provider[\"registry.terraform.io/hashicorp/aws\"]", + "instances": [ + { + "index_key": 0, + "schema_version": 0, + "attributes": { + "arn": "arn:aws:iam::300326902600:policy/snyk-demo-eks-w8w5o-deny-log-group20220719151337116800000001", + "description": "Deny CreateLogGroup", + "id": "arn:aws:iam::300326902600:policy/snyk-demo-eks-w8w5o-deny-log-group20220719151337116800000001", + "name": "snyk-demo-eks-w8w5o-deny-log-group20220719151337116800000001", + "name_prefix": "snyk-demo-eks-w8w5o-deny-log-group", + "path": "/", + "policy": "{\"Statement\":[{\"Action\":\"logs:CreateLogGroup\",\"Effect\":\"Deny\",\"Resource\":\"*\",\"Sid\":\"\"}],\"Version\":\"2012-10-17\"}", + "policy_id": "ANPAUL3HA3NEKEOFDW3XJ", + "tags": {}, + "tags_all": {} + }, + "sensitive_attributes": [], + "private": "bnVsbA==", + "dependencies": [ + "module.includes.module.eks.data.aws_iam_policy_document.cluster_deny_log_group", + "module.includes.random_string.suffix" + ] + } + ] + }, + { + "module": "module.includes.module.eks", + "mode": "managed", + "type": "aws_iam_policy", + "name": "cluster_elb_sl_role_creation", + "provider": "provider[\"registry.terraform.io/hashicorp/aws\"]", + "instances": [ + { + "index_key": 0, + "schema_version": 0, + "attributes": { + "arn": "arn:aws:iam::300326902600:policy/snyk-demo-eks-w8w5o-elb-sl-role-creation20220719151337117800000002", + "description": "Permissions for EKS to create AWSServiceRoleForElasticLoadBalancing service-linked role", + "id": "arn:aws:iam::300326902600:policy/snyk-demo-eks-w8w5o-elb-sl-role-creation20220719151337117800000002", + "name": "snyk-demo-eks-w8w5o-elb-sl-role-creation20220719151337117800000002", + "name_prefix": "snyk-demo-eks-w8w5o-elb-sl-role-creation", + "path": "/", + "policy": "{\"Statement\":[{\"Action\":[\"ec2:DescribeInternetGateways\",\"ec2:DescribeAddresses\",\"ec2:DescribeAccountAttributes\"],\"Effect\":\"Allow\",\"Resource\":\"*\",\"Sid\":\"\"}],\"Version\":\"2012-10-17\"}", + "policy_id": "ANPAUL3HA3NEO5HJCN7DI", + "tags": {}, + "tags_all": {} + }, + "sensitive_attributes": [], + "private": "bnVsbA==", + "dependencies": [ + "module.includes.module.eks.data.aws_iam_policy_document.cluster_elb_sl_role_creation", + "module.includes.random_string.suffix" + ] + } + ] + }, + { + "module": "module.includes.module.eks", + "mode": "managed", + "type": "aws_iam_role", + "name": "cluster", + "provider": "provider[\"registry.terraform.io/hashicorp/aws\"]", + "instances": [ + { + "index_key": 0, + "schema_version": 0, + "attributes": { + "arn": "arn:aws:iam::300326902600:role/snyk-demo-eks-w8w5o20220719151337118700000003", + "assume_role_policy": "{\"Version\":\"2012-10-17\",\"Statement\":[{\"Sid\":\"EKSClusterAssumeRole\",\"Effect\":\"Allow\",\"Principal\":{\"Service\":\"eks.amazonaws.com\"},\"Action\":\"sts:AssumeRole\"}]}", + "create_date": "2022-07-19T15:13:37Z", + "description": "", + "force_detach_policies": true, + "id": "snyk-demo-eks-w8w5o20220719151337118700000003", + "inline_policy": [ + { + "name": "", + "policy": "" + } + ], + "managed_policy_arns": [ + "arn:aws:iam::300326902600:policy/snyk-demo-eks-w8w5o-deny-log-group20220719151337116800000001", + "arn:aws:iam::300326902600:policy/snyk-demo-eks-w8w5o-elb-sl-role-creation20220719151337117800000002", + "arn:aws:iam::aws:policy/AmazonEKSClusterPolicy", + "arn:aws:iam::aws:policy/AmazonEKSServicePolicy", + "arn:aws:iam::aws:policy/AmazonEKSVPCResourceController" + ], + "max_session_duration": 3600, + "name": "snyk-demo-eks-w8w5o20220719151337118700000003", + "name_prefix": "snyk-demo-eks-w8w5o", + "path": "/", + "permissions_boundary": null, + "tags": {}, + "tags_all": {}, + "unique_id": "AROAUL3HA3NEO5QP5VAD7" + }, + "sensitive_attributes": [], + "private": "bnVsbA==", + "dependencies": [ + "module.includes.module.eks.data.aws_iam_policy_document.cluster_assume_role_policy", + "module.includes.random_string.suffix" + ], + "create_before_destroy": true + } + ] + }, + { + "module": "module.includes.module.eks", + "mode": "managed", + "type": "aws_iam_role", + "name": "workers", + "provider": "provider[\"registry.terraform.io/hashicorp/aws\"]", + "instances": [ + { + "index_key": 0, + "schema_version": 0, + "attributes": { + "arn": "arn:aws:iam::300326902600:role/snyk-demo-eks-w8w5o2022071915224389460000000e", + "assume_role_policy": "{\"Version\":\"2012-10-17\",\"Statement\":[{\"Sid\":\"EKSWorkerAssumeRole\",\"Effect\":\"Allow\",\"Principal\":{\"Service\":\"ec2.amazonaws.com\"},\"Action\":\"sts:AssumeRole\"}]}", + "create_date": "2022-07-19T15:22:44Z", + "description": "", + "force_detach_policies": true, + "id": "snyk-demo-eks-w8w5o2022071915224389460000000e", + "inline_policy": [ + { + "name": "", + "policy": "" + } + ], + "managed_policy_arns": [ + "arn:aws:iam::aws:policy/AmazonEC2ContainerRegistryReadOnly", + "arn:aws:iam::aws:policy/AmazonEKSWorkerNodePolicy", + "arn:aws:iam::aws:policy/AmazonEKS_CNI_Policy" + ], + "max_session_duration": 3600, + "name": "snyk-demo-eks-w8w5o2022071915224389460000000e", + "name_prefix": "snyk-demo-eks-w8w5o", + "path": "/", + "permissions_boundary": null, + "tags": {}, + "tags_all": {}, + "unique_id": "AROAUL3HA3NEHXPKCKPG2" + }, + "sensitive_attributes": [], + "private": "bnVsbA==", + "dependencies": [ + "module.includes.data.aws_availability_zones.available", + "module.includes.module.eks.aws_cloudwatch_log_group.this", + "module.includes.module.eks.aws_eks_cluster.this", + "module.includes.module.eks.aws_iam_role.cluster", + "module.includes.module.eks.aws_iam_role_policy_attachment.cluster_AmazonEKSClusterPolicy", + "module.includes.module.eks.aws_iam_role_policy_attachment.cluster_AmazonEKSServicePolicy", + "module.includes.module.eks.aws_iam_role_policy_attachment.cluster_AmazonEKSVPCResourceControllerPolicy", + "module.includes.module.eks.aws_security_group.cluster", + "module.includes.module.eks.aws_security_group.workers", + "module.includes.module.eks.aws_security_group_rule.cluster_egress_internet", + "module.includes.module.eks.aws_security_group_rule.cluster_https_worker_ingress", + "module.includes.module.eks.data.aws_iam_policy_document.cluster_assume_role_policy", + "module.includes.module.eks.data.aws_iam_policy_document.workers_assume_role_policy", + "module.includes.module.eks.data.aws_iam_role.custom_cluster_iam_role", + "module.includes.module.eks.data.aws_partition.current", + "module.includes.module.vpc.aws_subnet.private", + "module.includes.module.vpc.aws_vpc.this", + "module.includes.module.vpc.aws_vpc_ipv4_cidr_block_association.this", + "module.includes.random_string.suffix" + ], + "create_before_destroy": true + } + ] + }, + { + "module": "module.includes.module.eks", + "mode": "managed", + "type": "aws_iam_role_policy_attachment", + "name": "cluster_AmazonEKSClusterPolicy", + "provider": "provider[\"registry.terraform.io/hashicorp/aws\"]", + "instances": [ + { + "index_key": 0, + "schema_version": 0, + "attributes": { + "id": "snyk-demo-eks-w8w5o20220719151337118700000003-20220719151339063700000006", + "policy_arn": "arn:aws:iam::aws:policy/AmazonEKSClusterPolicy", + "role": "snyk-demo-eks-w8w5o20220719151337118700000003" + }, + "sensitive_attributes": [], + "private": "bnVsbA==", + "dependencies": [ + "module.includes.module.eks.aws_iam_role.cluster", + "module.includes.module.eks.data.aws_iam_policy_document.cluster_assume_role_policy", + "module.includes.module.eks.data.aws_partition.current", + "module.includes.random_string.suffix" + ], + "create_before_destroy": true + } + ] + }, + { + "module": "module.includes.module.eks", + "mode": "managed", + "type": "aws_iam_role_policy_attachment", + "name": "cluster_AmazonEKSServicePolicy", + "provider": "provider[\"registry.terraform.io/hashicorp/aws\"]", + "instances": [ + { + "index_key": 0, + "schema_version": 0, + "attributes": { + "id": "snyk-demo-eks-w8w5o20220719151337118700000003-20220719151339029000000004", + "policy_arn": "arn:aws:iam::aws:policy/AmazonEKSServicePolicy", + "role": "snyk-demo-eks-w8w5o20220719151337118700000003" + }, + "sensitive_attributes": [], + "private": "bnVsbA==", + "dependencies": [ + "module.includes.module.eks.aws_iam_role.cluster", + "module.includes.module.eks.data.aws_iam_policy_document.cluster_assume_role_policy", + "module.includes.module.eks.data.aws_partition.current", + "module.includes.random_string.suffix" + ], + "create_before_destroy": true + } + ] + }, + { + "module": "module.includes.module.eks", + "mode": "managed", + "type": "aws_iam_role_policy_attachment", + "name": "cluster_AmazonEKSVPCResourceControllerPolicy", + "provider": "provider[\"registry.terraform.io/hashicorp/aws\"]", + "instances": [ + { + "index_key": 0, + "schema_version": 0, + "attributes": { + "id": "snyk-demo-eks-w8w5o20220719151337118700000003-20220719151339036000000005", + "policy_arn": "arn:aws:iam::aws:policy/AmazonEKSVPCResourceController", + "role": "snyk-demo-eks-w8w5o20220719151337118700000003" + }, + "sensitive_attributes": [], + "private": "bnVsbA==", + "dependencies": [ + "module.includes.module.eks.aws_iam_role.cluster", + "module.includes.module.eks.data.aws_iam_policy_document.cluster_assume_role_policy", + "module.includes.module.eks.data.aws_partition.current", + "module.includes.random_string.suffix" + ], + "create_before_destroy": true + } + ] + }, + { + "module": "module.includes.module.eks", + "mode": "managed", + "type": "aws_iam_role_policy_attachment", + "name": "cluster_deny_log_group", + "provider": "provider[\"registry.terraform.io/hashicorp/aws\"]", + "instances": [ + { + "index_key": 0, + "schema_version": 0, + "attributes": { + "id": "snyk-demo-eks-w8w5o20220719151337118700000003-20220719151339067400000008", + "policy_arn": "arn:aws:iam::300326902600:policy/snyk-demo-eks-w8w5o-deny-log-group20220719151337116800000001", + "role": "snyk-demo-eks-w8w5o20220719151337118700000003" + }, + "sensitive_attributes": [], + "private": "bnVsbA==", + "dependencies": [ + "module.includes.module.eks.aws_iam_policy.cluster_deny_log_group", + "module.includes.module.eks.aws_iam_role.cluster", + "module.includes.module.eks.data.aws_iam_policy_document.cluster_assume_role_policy", + "module.includes.module.eks.data.aws_iam_policy_document.cluster_deny_log_group", + "module.includes.random_string.suffix" + ] + } + ] + }, + { + "module": "module.includes.module.eks", + "mode": "managed", + "type": "aws_iam_role_policy_attachment", + "name": "cluster_elb_sl_role_creation", + "provider": "provider[\"registry.terraform.io/hashicorp/aws\"]", + "instances": [ + { + "index_key": 0, + "schema_version": 0, + "attributes": { + "id": "snyk-demo-eks-w8w5o20220719151337118700000003-20220719151339065200000007", + "policy_arn": "arn:aws:iam::300326902600:policy/snyk-demo-eks-w8w5o-elb-sl-role-creation20220719151337117800000002", + "role": "snyk-demo-eks-w8w5o20220719151337118700000003" + }, + "sensitive_attributes": [], + "private": "bnVsbA==", + "dependencies": [ + "module.includes.module.eks.aws_iam_policy.cluster_elb_sl_role_creation", + "module.includes.module.eks.aws_iam_role.cluster", + "module.includes.module.eks.data.aws_iam_policy_document.cluster_assume_role_policy", + "module.includes.module.eks.data.aws_iam_policy_document.cluster_elb_sl_role_creation", + "module.includes.random_string.suffix" + ] + } + ] + }, + { + "module": "module.includes.module.eks", + "mode": "managed", + "type": "aws_iam_role_policy_attachment", + "name": "workers_AmazonEC2ContainerRegistryReadOnly", + "provider": "provider[\"registry.terraform.io/hashicorp/aws\"]", + "instances": [ + { + "index_key": 0, + "schema_version": 0, + "attributes": { + "id": "snyk-demo-eks-w8w5o2022071915224389460000000e-20220719152245987900000013", + "policy_arn": "arn:aws:iam::aws:policy/AmazonEC2ContainerRegistryReadOnly", + "role": "snyk-demo-eks-w8w5o2022071915224389460000000e" + }, + "sensitive_attributes": [], + "private": "bnVsbA==", + "dependencies": [ + "module.includes.data.aws_availability_zones.available", + "module.includes.module.eks.aws_cloudwatch_log_group.this", + "module.includes.module.eks.aws_eks_cluster.this", + "module.includes.module.eks.aws_iam_role.cluster", + "module.includes.module.eks.aws_iam_role.workers", + "module.includes.module.eks.aws_iam_role_policy_attachment.cluster_AmazonEKSClusterPolicy", + "module.includes.module.eks.aws_iam_role_policy_attachment.cluster_AmazonEKSServicePolicy", + "module.includes.module.eks.aws_iam_role_policy_attachment.cluster_AmazonEKSVPCResourceControllerPolicy", + "module.includes.module.eks.aws_security_group.cluster", + "module.includes.module.eks.aws_security_group.workers", + "module.includes.module.eks.aws_security_group_rule.cluster_egress_internet", + "module.includes.module.eks.aws_security_group_rule.cluster_https_worker_ingress", + "module.includes.module.eks.data.aws_iam_policy_document.cluster_assume_role_policy", + "module.includes.module.eks.data.aws_iam_policy_document.workers_assume_role_policy", + "module.includes.module.eks.data.aws_iam_role.custom_cluster_iam_role", + "module.includes.module.eks.data.aws_partition.current", + "module.includes.module.vpc.aws_subnet.private", + "module.includes.module.vpc.aws_vpc.this", + "module.includes.module.vpc.aws_vpc_ipv4_cidr_block_association.this", + "module.includes.random_string.suffix" + ], + "create_before_destroy": true + } + ] + }, + { + "module": "module.includes.module.eks", + "mode": "managed", + "type": "aws_iam_role_policy_attachment", + "name": "workers_AmazonEKSWorkerNodePolicy", + "provider": "provider[\"registry.terraform.io/hashicorp/aws\"]", + "instances": [ + { + "index_key": 0, + "schema_version": 0, + "attributes": { + "id": "snyk-demo-eks-w8w5o2022071915224389460000000e-20220719152245985200000012", + "policy_arn": "arn:aws:iam::aws:policy/AmazonEKSWorkerNodePolicy", + "role": "snyk-demo-eks-w8w5o2022071915224389460000000e" + }, + "sensitive_attributes": [], + "private": "bnVsbA==", + "dependencies": [ + "module.includes.data.aws_availability_zones.available", + "module.includes.module.eks.aws_cloudwatch_log_group.this", + "module.includes.module.eks.aws_eks_cluster.this", + "module.includes.module.eks.aws_iam_role.cluster", + "module.includes.module.eks.aws_iam_role.workers", + "module.includes.module.eks.aws_iam_role_policy_attachment.cluster_AmazonEKSClusterPolicy", + "module.includes.module.eks.aws_iam_role_policy_attachment.cluster_AmazonEKSServicePolicy", + "module.includes.module.eks.aws_iam_role_policy_attachment.cluster_AmazonEKSVPCResourceControllerPolicy", + "module.includes.module.eks.aws_security_group.cluster", + "module.includes.module.eks.aws_security_group.workers", + "module.includes.module.eks.aws_security_group_rule.cluster_egress_internet", + "module.includes.module.eks.aws_security_group_rule.cluster_https_worker_ingress", + "module.includes.module.eks.data.aws_iam_policy_document.cluster_assume_role_policy", + "module.includes.module.eks.data.aws_iam_policy_document.workers_assume_role_policy", + "module.includes.module.eks.data.aws_iam_role.custom_cluster_iam_role", + "module.includes.module.eks.data.aws_partition.current", + "module.includes.module.vpc.aws_subnet.private", + "module.includes.module.vpc.aws_vpc.this", + "module.includes.module.vpc.aws_vpc_ipv4_cidr_block_association.this", + "module.includes.random_string.suffix" + ], + "create_before_destroy": true + } + ] + }, + { + "module": "module.includes.module.eks", + "mode": "managed", + "type": "aws_iam_role_policy_attachment", + "name": "workers_AmazonEKS_CNI_Policy", + "provider": "provider[\"registry.terraform.io/hashicorp/aws\"]", + "instances": [ + { + "index_key": 0, + "schema_version": 0, + "attributes": { + "id": "snyk-demo-eks-w8w5o2022071915224389460000000e-20220719152245975100000011", + "policy_arn": "arn:aws:iam::aws:policy/AmazonEKS_CNI_Policy", + "role": "snyk-demo-eks-w8w5o2022071915224389460000000e" + }, + "sensitive_attributes": [], + "private": "bnVsbA==", + "dependencies": [ + "module.includes.data.aws_availability_zones.available", + "module.includes.module.eks.aws_cloudwatch_log_group.this", + "module.includes.module.eks.aws_eks_cluster.this", + "module.includes.module.eks.aws_iam_role.cluster", + "module.includes.module.eks.aws_iam_role.workers", + "module.includes.module.eks.aws_iam_role_policy_attachment.cluster_AmazonEKSClusterPolicy", + "module.includes.module.eks.aws_iam_role_policy_attachment.cluster_AmazonEKSServicePolicy", + "module.includes.module.eks.aws_iam_role_policy_attachment.cluster_AmazonEKSVPCResourceControllerPolicy", + "module.includes.module.eks.aws_security_group.cluster", + "module.includes.module.eks.aws_security_group.workers", + "module.includes.module.eks.aws_security_group_rule.cluster_egress_internet", + "module.includes.module.eks.aws_security_group_rule.cluster_https_worker_ingress", + "module.includes.module.eks.data.aws_iam_policy_document.cluster_assume_role_policy", + "module.includes.module.eks.data.aws_iam_policy_document.workers_assume_role_policy", + "module.includes.module.eks.data.aws_iam_role.custom_cluster_iam_role", + "module.includes.module.eks.data.aws_partition.current", + "module.includes.module.vpc.aws_subnet.private", + "module.includes.module.vpc.aws_vpc.this", + "module.includes.module.vpc.aws_vpc_ipv4_cidr_block_association.this", + "module.includes.random_string.suffix" + ], + "create_before_destroy": true + } + ] + }, + { + "module": "module.includes.module.eks", + "mode": "managed", + "type": "aws_launch_configuration", + "name": "workers", + "provider": "provider[\"registry.terraform.io/hashicorp/aws\"]", + "instances": [ + { + "index_key": 0, + "schema_version": 0, + "attributes": { + "arn": "arn:aws:autoscaling:us-east-1:300326902600:launchConfiguration:cb0bc5f4-7685-4608-b695-e749f7b354b3:launchConfigurationName/snyk-demo-eks-w8w5o-worker-group-120220719152246632200000014", + "associate_public_ip_address": false, + "ebs_block_device": [], + "ebs_optimized": false, + "enable_monitoring": true, + "ephemeral_block_device": [], + "iam_instance_profile": "snyk-demo-eks-w8w5o20220719152245663300000010", + "id": "snyk-demo-eks-w8w5o-worker-group-120220719152246632200000014", + "image_id": "ami-03b6d3012ad0824a1", + "instance_type": "t2.small", + "key_name": "", + "metadata_options": [ + { + "http_endpoint": "enabled", + "http_put_response_hop_limit": 1, + "http_tokens": "optional" + } + ], + "name": "snyk-demo-eks-w8w5o-worker-group-120220719152246632200000014", + "name_prefix": "snyk-demo-eks-w8w5o-worker-group-1", + "placement_tenancy": "", + "root_block_device": [ + { + "delete_on_termination": true, + "encrypted": false, + "iops": 0, + "throughput": 0, + "volume_size": 100, + "volume_type": "gp2" + } + ], + "security_groups": [ + "sg-0942cb2cea6889842", + "sg-09cf9b02c5fc7da07" + ], + "spot_price": "", + "user_data": null, + "user_data_base64": "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", + "vpc_classic_link_id": "", + "vpc_classic_link_security_groups": [] + }, + "sensitive_attributes": [], + "private": "bnVsbA==", + "dependencies": [ + "module.includes.data.aws_availability_zones.available", + "module.includes.module.eks.aws_cloudwatch_log_group.this", + "module.includes.module.eks.aws_eks_cluster.this", + "module.includes.module.eks.aws_iam_instance_profile.workers", + "module.includes.module.eks.aws_iam_role.cluster", + "module.includes.module.eks.aws_iam_role.workers", + "module.includes.module.eks.aws_iam_role_policy_attachment.cluster_AmazonEKSClusterPolicy", + "module.includes.module.eks.aws_iam_role_policy_attachment.cluster_AmazonEKSServicePolicy", + "module.includes.module.eks.aws_iam_role_policy_attachment.cluster_AmazonEKSVPCResourceControllerPolicy", + "module.includes.module.eks.aws_iam_role_policy_attachment.workers_AmazonEC2ContainerRegistryReadOnly", + "module.includes.module.eks.aws_iam_role_policy_attachment.workers_AmazonEKSWorkerNodePolicy", + "module.includes.module.eks.aws_iam_role_policy_attachment.workers_AmazonEKS_CNI_Policy", + "module.includes.module.eks.aws_iam_role_policy_attachment.workers_additional_policies", + "module.includes.module.eks.aws_security_group.cluster", + "module.includes.module.eks.aws_security_group.workers", + "module.includes.module.eks.aws_security_group_rule.cluster_egress_internet", + "module.includes.module.eks.aws_security_group_rule.cluster_https_worker_ingress", + "module.includes.module.eks.aws_security_group_rule.cluster_primary_ingress_workers", + "module.includes.module.eks.aws_security_group_rule.workers_egress_internet", + "module.includes.module.eks.aws_security_group_rule.workers_ingress_cluster", + "module.includes.module.eks.aws_security_group_rule.workers_ingress_cluster_https", + "module.includes.module.eks.aws_security_group_rule.workers_ingress_cluster_kubelet", + "module.includes.module.eks.aws_security_group_rule.workers_ingress_cluster_primary", + "module.includes.module.eks.aws_security_group_rule.workers_ingress_self", + "module.includes.module.eks.data.aws_ami.eks_worker", + "module.includes.module.eks.data.aws_ami.eks_worker_windows", + "module.includes.module.eks.data.aws_iam_instance_profile.custom_worker_group_iam_instance_profile", + "module.includes.module.eks.data.aws_iam_policy_document.cluster_assume_role_policy", + "module.includes.module.eks.data.aws_iam_policy_document.workers_assume_role_policy", + "module.includes.module.eks.data.aws_iam_role.custom_cluster_iam_role", + "module.includes.module.eks.data.aws_partition.current", + "module.includes.module.vpc.aws_subnet.private", + "module.includes.module.vpc.aws_vpc.this", + "module.includes.module.vpc.aws_vpc_ipv4_cidr_block_association.this", + "module.includes.random_string.suffix", + "module.sg.aws_security_group.worker_group_mgmt_one", + "module.sg.aws_security_group.worker_group_mgmt_two" + ], + "create_before_destroy": true + }, + { + "index_key": 1, + "schema_version": 0, + "attributes": { + "arn": "arn:aws:autoscaling:us-east-1:300326902600:launchConfiguration:49eac0ce-a7a6-44b0-a794-59a8c34446b1:launchConfigurationName/snyk-demo-eks-w8w5o-worker-group-220220719152246632200000015", + "associate_public_ip_address": false, + "ebs_block_device": [], + "ebs_optimized": false, + "enable_monitoring": true, + "ephemeral_block_device": [], + "iam_instance_profile": "snyk-demo-eks-w8w5o2022071915224566320000000f", + "id": "snyk-demo-eks-w8w5o-worker-group-220220719152246632200000015", + "image_id": "ami-03b6d3012ad0824a1", + "instance_type": "t2.medium", + "key_name": "", + "metadata_options": [ + { + "http_endpoint": "enabled", + "http_put_response_hop_limit": 1, + "http_tokens": "optional" + } + ], + "name": "snyk-demo-eks-w8w5o-worker-group-220220719152246632200000015", + "name_prefix": "snyk-demo-eks-w8w5o-worker-group-2", + "placement_tenancy": "", + "root_block_device": [ + { + "delete_on_termination": true, + "encrypted": false, + "iops": 0, + "throughput": 0, + "volume_size": 100, + "volume_type": "gp2" + } + ], + "security_groups": [ + "sg-058269446c107f427", + "sg-09cf9b02c5fc7da07" + ], + "spot_price": "", + "user_data": null, + "user_data_base64": "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", + "vpc_classic_link_id": "", + "vpc_classic_link_security_groups": [] + }, + "sensitive_attributes": [], + "private": "bnVsbA==", + "dependencies": [ + "module.includes.data.aws_availability_zones.available", + "module.includes.module.eks.aws_cloudwatch_log_group.this", + "module.includes.module.eks.aws_eks_cluster.this", + "module.includes.module.eks.aws_iam_instance_profile.workers", + "module.includes.module.eks.aws_iam_role.cluster", + "module.includes.module.eks.aws_iam_role.workers", + "module.includes.module.eks.aws_iam_role_policy_attachment.cluster_AmazonEKSClusterPolicy", + "module.includes.module.eks.aws_iam_role_policy_attachment.cluster_AmazonEKSServicePolicy", + "module.includes.module.eks.aws_iam_role_policy_attachment.cluster_AmazonEKSVPCResourceControllerPolicy", + "module.includes.module.eks.aws_iam_role_policy_attachment.workers_AmazonEC2ContainerRegistryReadOnly", + "module.includes.module.eks.aws_iam_role_policy_attachment.workers_AmazonEKSWorkerNodePolicy", + "module.includes.module.eks.aws_iam_role_policy_attachment.workers_AmazonEKS_CNI_Policy", + "module.includes.module.eks.aws_iam_role_policy_attachment.workers_additional_policies", + "module.includes.module.eks.aws_security_group.cluster", + "module.includes.module.eks.aws_security_group.workers", + "module.includes.module.eks.aws_security_group_rule.cluster_egress_internet", + "module.includes.module.eks.aws_security_group_rule.cluster_https_worker_ingress", + "module.includes.module.eks.aws_security_group_rule.cluster_primary_ingress_workers", + "module.includes.module.eks.aws_security_group_rule.workers_egress_internet", + "module.includes.module.eks.aws_security_group_rule.workers_ingress_cluster", + "module.includes.module.eks.aws_security_group_rule.workers_ingress_cluster_https", + "module.includes.module.eks.aws_security_group_rule.workers_ingress_cluster_kubelet", + "module.includes.module.eks.aws_security_group_rule.workers_ingress_cluster_primary", + "module.includes.module.eks.aws_security_group_rule.workers_ingress_self", + "module.includes.module.eks.data.aws_ami.eks_worker", + "module.includes.module.eks.data.aws_ami.eks_worker_windows", + "module.includes.module.eks.data.aws_iam_instance_profile.custom_worker_group_iam_instance_profile", + "module.includes.module.eks.data.aws_iam_policy_document.cluster_assume_role_policy", + "module.includes.module.eks.data.aws_iam_policy_document.workers_assume_role_policy", + "module.includes.module.eks.data.aws_iam_role.custom_cluster_iam_role", + "module.includes.module.eks.data.aws_partition.current", + "module.includes.module.vpc.aws_subnet.private", + "module.includes.module.vpc.aws_vpc.this", + "module.includes.module.vpc.aws_vpc_ipv4_cidr_block_association.this", + "module.includes.random_string.suffix", + "module.sg.aws_security_group.worker_group_mgmt_one", + "module.sg.aws_security_group.worker_group_mgmt_two" + ], + "create_before_destroy": true + } + ] + }, + { + "module": "module.includes.module.eks", + "mode": "managed", + "type": "aws_security_group", + "name": "cluster", + "provider": "provider[\"registry.terraform.io/hashicorp/aws\"]", + "instances": [ + { + "index_key": 0, + "schema_version": 1, + "attributes": { + "arn": "arn:aws:ec2:us-east-1:300326902600:security-group/sg-00568d8e870d78093", + "description": "EKS cluster security group.", + "egress": [ + { + "cidr_blocks": [ + "0.0.0.0/0" + ], + "description": "Allow cluster egress access to the Internet.", + "from_port": 0, + "ipv6_cidr_blocks": [], + "prefix_list_ids": [], + "protocol": "-1", + "security_groups": [], + "self": false, + "to_port": 0 + } + ], + "id": "sg-00568d8e870d78093", + "ingress": [ + { + "cidr_blocks": [], + "description": "Allow pods to communicate with the EKS cluster API.", + "from_port": 443, + "ipv6_cidr_blocks": [], + "prefix_list_ids": [], + "protocol": "tcp", + "security_groups": [ + "sg-09cf9b02c5fc7da07" + ], + "self": false, + "to_port": 443 + } + ], + "name": "snyk-demo-eks-w8w5o2022071915135306220000000a", + "name_prefix": "snyk-demo-eks-w8w5o", + "owner_id": "300326902600", + "revoke_rules_on_delete": false, + "tags": { + "Name": "snyk-demo-eks-w8w5o-eks_cluster_sg" + }, + "tags_all": { + "Name": "snyk-demo-eks-w8w5o-eks_cluster_sg" + }, + "timeouts": null, + "vpc_id": "vpc-06a175864b219d14c" + }, + "sensitive_attributes": [], + "private": "eyJlMmJmYjczMC1lY2FhLTExZTYtOGY4OC0zNDM2M2JjN2M0YzAiOnsiY3JlYXRlIjo2MDAwMDAwMDAwMDAsImRlbGV0ZSI6OTAwMDAwMDAwMDAwfSwic2NoZW1hX3ZlcnNpb24iOiIxIn0=", + "dependencies": [ + "module.includes.module.vpc.aws_vpc.this", + "module.includes.random_string.suffix" + ], + "create_before_destroy": true + } + ] + }, + { + "module": "module.includes.module.eks", + "mode": "managed", + "type": "aws_security_group", + "name": "workers", + "provider": "provider[\"registry.terraform.io/hashicorp/aws\"]", + "instances": [ + { + "index_key": 0, + "schema_version": 1, + "attributes": { + "arn": "arn:aws:ec2:us-east-1:300326902600:security-group/sg-09cf9b02c5fc7da07", + "description": "Security group for all nodes in the cluster.", + "egress": [ + { + "cidr_blocks": [ + "0.0.0.0/0" + ], + "description": "Allow nodes all egress to the Internet.", + "from_port": 0, + "ipv6_cidr_blocks": [], + "prefix_list_ids": [], + "protocol": "-1", + "security_groups": [], + "self": false, + "to_port": 0 + } + ], + "id": "sg-09cf9b02c5fc7da07", + "ingress": [ + { + "cidr_blocks": [], + "description": "Allow node to communicate with each other.", + "from_port": 0, + "ipv6_cidr_blocks": [], + "prefix_list_ids": [], + "protocol": "-1", + "security_groups": [], + "self": true, + "to_port": 0 + }, + { + "cidr_blocks": [], + "description": "Allow pods running extension API servers on port 443 to receive communication from cluster control plane.", + "from_port": 443, + "ipv6_cidr_blocks": [], + "prefix_list_ids": [], + "protocol": "tcp", + "security_groups": [ + "sg-00568d8e870d78093" + ], + "self": false, + "to_port": 443 + }, + { + "cidr_blocks": [], + "description": "Allow workers pods to receive communication from the cluster control plane.", + "from_port": 1025, + "ipv6_cidr_blocks": [], + "prefix_list_ids": [], + "protocol": "tcp", + "security_groups": [ + "sg-00568d8e870d78093" + ], + "self": false, + "to_port": 65535 + } + ], + "name": "snyk-demo-eks-w8w5o20220719151352052400000009", + "name_prefix": "snyk-demo-eks-w8w5o", + "owner_id": "300326902600", + "revoke_rules_on_delete": false, + "tags": { + "Name": "snyk-demo-eks-w8w5o-eks_worker_sg", + "kubernetes.io/cluster/snyk-demo-eks-w8w5o": "owned" + }, + "tags_all": { + "Name": "snyk-demo-eks-w8w5o-eks_worker_sg", + "kubernetes.io/cluster/snyk-demo-eks-w8w5o": "owned" + }, + "timeouts": null, + "vpc_id": "vpc-06a175864b219d14c" + }, + "sensitive_attributes": [], + "private": "eyJlMmJmYjczMC1lY2FhLTExZTYtOGY4OC0zNDM2M2JjN2M0YzAiOnsiY3JlYXRlIjo2MDAwMDAwMDAwMDAsImRlbGV0ZSI6OTAwMDAwMDAwMDAwfSwic2NoZW1hX3ZlcnNpb24iOiIxIn0=", + "dependencies": [ + "module.includes.module.vpc.aws_vpc.this", + "module.includes.random_string.suffix" + ], + "create_before_destroy": true + } + ] + }, + { + "module": "module.includes.module.eks", + "mode": "managed", + "type": "aws_security_group_rule", + "name": "cluster_egress_internet", + "provider": "provider[\"registry.terraform.io/hashicorp/aws\"]", + "instances": [ + { + "index_key": 0, + "schema_version": 2, + "attributes": { + "cidr_blocks": [ + "0.0.0.0/0" + ], + "description": "Allow cluster egress access to the Internet.", + "from_port": 0, + "id": "sgrule-387642683", + "ipv6_cidr_blocks": [], + "prefix_list_ids": [], + "protocol": "-1", + "security_group_id": "sg-00568d8e870d78093", + "self": false, + "source_security_group_id": null, + "to_port": 0, + "type": "egress" + }, + "sensitive_attributes": [], + "private": "eyJzY2hlbWFfdmVyc2lvbiI6IjIifQ==", + "dependencies": [ + "module.includes.module.eks.aws_security_group.cluster", + "module.includes.module.vpc.aws_vpc.this", + "module.includes.random_string.suffix" + ], + "create_before_destroy": true + } + ] + }, + { + "module": "module.includes.module.eks", + "mode": "managed", + "type": "aws_security_group_rule", + "name": "cluster_https_worker_ingress", + "provider": "provider[\"registry.terraform.io/hashicorp/aws\"]", + "instances": [ + { + "index_key": 0, + "schema_version": 2, + "attributes": { + "cidr_blocks": [], + "description": "Allow pods to communicate with the EKS cluster API.", + "from_port": 443, + "id": "sgrule-401916700", + "ipv6_cidr_blocks": [], + "prefix_list_ids": [], + "protocol": "tcp", + "security_group_id": "sg-00568d8e870d78093", + "self": false, + "source_security_group_id": "sg-09cf9b02c5fc7da07", + "to_port": 443, + "type": "ingress" + }, + "sensitive_attributes": [], + "private": "eyJzY2hlbWFfdmVyc2lvbiI6IjIifQ==", + "dependencies": [ + "module.includes.module.eks.aws_security_group.cluster", + "module.includes.module.eks.aws_security_group.workers", + "module.includes.module.vpc.aws_vpc.this", + "module.includes.random_string.suffix" + ], + "create_before_destroy": true + } + ] + }, + { + "module": "module.includes.module.eks", + "mode": "managed", + "type": "aws_security_group_rule", + "name": "workers_egress_internet", + "provider": "provider[\"registry.terraform.io/hashicorp/aws\"]", + "instances": [ + { + "index_key": 0, + "schema_version": 2, + "attributes": { + "cidr_blocks": [ + "0.0.0.0/0" + ], + "description": "Allow nodes all egress to the Internet.", + "from_port": 0, + "id": "sgrule-468256327", + "ipv6_cidr_blocks": [], + "prefix_list_ids": [], + "protocol": "-1", + "security_group_id": "sg-09cf9b02c5fc7da07", + "self": false, + "source_security_group_id": null, + "to_port": 0, + "type": "egress" + }, + "sensitive_attributes": [], + "private": "eyJzY2hlbWFfdmVyc2lvbiI6IjIifQ==", + "dependencies": [ + "module.includes.module.eks.aws_security_group.workers", + "module.includes.module.vpc.aws_vpc.this", + "module.includes.random_string.suffix" + ], + "create_before_destroy": true + } + ] + }, + { + "module": "module.includes.module.eks", + "mode": "managed", + "type": "aws_security_group_rule", + "name": "workers_ingress_cluster", + "provider": "provider[\"registry.terraform.io/hashicorp/aws\"]", + "instances": [ + { + "index_key": 0, + "schema_version": 2, + "attributes": { + "cidr_blocks": [], + "description": "Allow workers pods to receive communication from the cluster control plane.", + "from_port": 1025, + "id": "sgrule-1416160705", + "ipv6_cidr_blocks": [], + "prefix_list_ids": [], + "protocol": "tcp", + "security_group_id": "sg-09cf9b02c5fc7da07", + "self": false, + "source_security_group_id": "sg-00568d8e870d78093", + "to_port": 65535, + "type": "ingress" + }, + "sensitive_attributes": [], + "private": "eyJzY2hlbWFfdmVyc2lvbiI6IjIifQ==", + "dependencies": [ + "module.includes.module.eks.aws_security_group.cluster", + "module.includes.module.eks.aws_security_group.workers", + "module.includes.module.vpc.aws_vpc.this", + "module.includes.random_string.suffix" + ], + "create_before_destroy": true + } + ] + }, + { + "module": "module.includes.module.eks", + "mode": "managed", + "type": "aws_security_group_rule", + "name": "workers_ingress_cluster_https", + "provider": "provider[\"registry.terraform.io/hashicorp/aws\"]", + "instances": [ + { + "index_key": 0, + "schema_version": 2, + "attributes": { + "cidr_blocks": [], + "description": "Allow pods running extension API servers on port 443 to receive communication from cluster control plane.", + "from_port": 443, + "id": "sgrule-1299888068", + "ipv6_cidr_blocks": [], + "prefix_list_ids": [], + "protocol": "tcp", + "security_group_id": "sg-09cf9b02c5fc7da07", + "self": false, + "source_security_group_id": "sg-00568d8e870d78093", + "to_port": 443, + "type": "ingress" + }, + "sensitive_attributes": [], + "private": "eyJzY2hlbWFfdmVyc2lvbiI6IjIifQ==", + "dependencies": [ + "module.includes.module.eks.aws_security_group.cluster", + "module.includes.module.eks.aws_security_group.workers", + "module.includes.module.vpc.aws_vpc.this", + "module.includes.random_string.suffix" + ], + "create_before_destroy": true + } + ] + }, + { + "module": "module.includes.module.eks", + "mode": "managed", + "type": "aws_security_group_rule", + "name": "workers_ingress_self", + "provider": "provider[\"registry.terraform.io/hashicorp/aws\"]", + "instances": [ + { + "index_key": 0, + "schema_version": 2, + "attributes": { + "cidr_blocks": [], + "description": "Allow node to communicate with each other.", + "from_port": 0, + "id": "sgrule-2284690643", + "ipv6_cidr_blocks": [], + "prefix_list_ids": [], + "protocol": "-1", + "security_group_id": "sg-09cf9b02c5fc7da07", + "self": false, + "source_security_group_id": "sg-09cf9b02c5fc7da07", + "to_port": 0, + "type": "ingress" + }, + "sensitive_attributes": [], + "private": "eyJzY2hlbWFfdmVyc2lvbiI6IjIifQ==", + "dependencies": [ + "module.includes.module.eks.aws_security_group.workers", + "module.includes.module.vpc.aws_vpc.this", + "module.includes.random_string.suffix" + ], + "create_before_destroy": true + } + ] + }, + { + "module": "module.includes.module.eks", + "mode": "managed", + "type": "kubernetes_config_map", + "name": "aws_auth", + "provider": "provider[\"registry.terraform.io/hashicorp/kubernetes\"]", + "instances": [ + { + "index_key": 0, + "schema_version": 0, + "attributes": { + "binary_data": {}, + "data": { + "mapAccounts": "[]\n", + "mapRoles": "- \"groups\":\n - \"system:bootstrappers\"\n - \"system:nodes\"\n \"rolearn\": \"arn:aws:iam::300326902600:role/snyk-demo-eks-w8w5o2022071915224389460000000e\"\n \"username\": \"system:node:{{EC2PrivateDNSName}}\"\n", + "mapUsers": "[]\n" + }, + "id": "kube-system/aws-auth", + "metadata": [ + { + "annotations": {}, + "generate_name": "", + "generation": 0, + "labels": { + "app.kubernetes.io/managed-by": "Terraform", + "terraform.io/module": "terraform-aws-modules.eks.aws" + }, + "name": "aws-auth", + "namespace": "kube-system", + "resource_version": "879", + "uid": "c74f8fb6-5ec6-4ab5-94f9-bda23e896cc0" + } + ] + }, + "sensitive_attributes": [], + "private": "bnVsbA==", + "dependencies": [ + "module.includes.data.aws_availability_zones.available", + "module.includes.data.aws_eks_cluster.cluster", + "module.includes.data.aws_eks_cluster_auth.cluster", + "module.includes.module.eks.aws_cloudwatch_log_group.this", + "module.includes.module.eks.aws_eks_cluster.this", + "module.includes.module.eks.aws_iam_instance_profile.workers", + "module.includes.module.eks.aws_iam_instance_profile.workers_launch_template", + "module.includes.module.eks.aws_iam_role.cluster", + "module.includes.module.eks.aws_iam_role.workers", + "module.includes.module.eks.aws_iam_role_policy_attachment.cluster_AmazonEKSClusterPolicy", + "module.includes.module.eks.aws_iam_role_policy_attachment.cluster_AmazonEKSServicePolicy", + "module.includes.module.eks.aws_iam_role_policy_attachment.cluster_AmazonEKSVPCResourceControllerPolicy", + "module.includes.module.eks.aws_iam_role_policy_attachment.workers_AmazonEC2ContainerRegistryReadOnly", + "module.includes.module.eks.aws_iam_role_policy_attachment.workers_AmazonEKSWorkerNodePolicy", + "module.includes.module.eks.aws_iam_role_policy_attachment.workers_AmazonEKS_CNI_Policy", + "module.includes.module.eks.aws_security_group.cluster", + "module.includes.module.eks.aws_security_group.workers", + "module.includes.module.eks.aws_security_group_rule.cluster_egress_internet", + "module.includes.module.eks.aws_security_group_rule.cluster_https_worker_ingress", + "module.includes.module.eks.aws_security_group_rule.cluster_private_access_cidrs_source", + "module.includes.module.eks.aws_security_group_rule.cluster_private_access_sg_source", + "module.includes.module.eks.data.aws_ami.eks_worker", + "module.includes.module.eks.data.aws_ami.eks_worker_windows", + "module.includes.module.eks.data.aws_caller_identity.current", + "module.includes.module.eks.data.aws_iam_instance_profile.custom_worker_group_iam_instance_profile", + "module.includes.module.eks.data.aws_iam_instance_profile.custom_worker_group_launch_template_iam_instance_profile", + "module.includes.module.eks.data.aws_iam_policy_document.cluster_assume_role_policy", + "module.includes.module.eks.data.aws_iam_policy_document.workers_assume_role_policy", + "module.includes.module.eks.data.aws_iam_role.custom_cluster_iam_role", + "module.includes.module.eks.data.aws_partition.current", + "module.includes.module.eks.data.http.wait_for_cluster", + "module.includes.module.eks.module.fargate.aws_iam_role.eks_fargate_pod", + "module.includes.module.eks.module.fargate.data.aws_iam_policy_document.eks_fargate_pod_assume_role", + "module.includes.module.eks.module.fargate.data.aws_iam_role.custom_fargate_iam_role", + "module.includes.module.vpc.aws_subnet.private", + "module.includes.module.vpc.aws_vpc.this", + "module.includes.module.vpc.aws_vpc_ipv4_cidr_block_association.this", + "module.includes.random_string.suffix", + "module.sg.aws_security_group.worker_group_mgmt_one", + "module.sg.aws_security_group.worker_group_mgmt_two" + ] + } + ] + }, + { + "module": "module.includes.module.eks", + "mode": "managed", + "type": "local_file", + "name": "kubeconfig", + "provider": "provider[\"registry.terraform.io/hashicorp/local\"]", + "instances": [ + { + "index_key": 0, + "schema_version": 0, + "attributes": { + "content": "apiVersion: v1\npreferences: {}\nkind: Config\n\nclusters:\n- cluster:\n server: https://5B6D28277CA645CAF0C643A86FD3E768.gr7.us-east-1.eks.amazonaws.com\n certificate-authority-data: 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\n name: eks_snyk-demo-eks-w8w5o\n\ncontexts:\n- context:\n cluster: eks_snyk-demo-eks-w8w5o\n user: eks_snyk-demo-eks-w8w5o\n name: eks_snyk-demo-eks-w8w5o\n\ncurrent-context: eks_snyk-demo-eks-w8w5o\n\nusers:\n- name: eks_snyk-demo-eks-w8w5o\n user:\n exec:\n apiVersion: client.authentication.k8s.io/v1alpha1\n command: aws-iam-authenticator\n args:\n - \"token\"\n - \"-i\"\n - \"snyk-demo-eks-w8w5o\"\n", + "content_base64": null, + "directory_permission": "0755", + "file_permission": "0600", + "filename": "./kubeconfig_snyk-demo-eks-w8w5o", + "id": "44b4b7e997d99c544b01799c41edcbc22ec5df1d", + "sensitive_content": null, + "source": null + }, + "sensitive_attributes": [], + "private": "bnVsbA==", + "dependencies": [ + "module.includes.data.aws_availability_zones.available", + "module.includes.module.eks.aws_cloudwatch_log_group.this", + "module.includes.module.eks.aws_eks_cluster.this", + "module.includes.module.eks.aws_iam_role.cluster", + "module.includes.module.eks.aws_iam_role_policy_attachment.cluster_AmazonEKSClusterPolicy", + "module.includes.module.eks.aws_iam_role_policy_attachment.cluster_AmazonEKSServicePolicy", + "module.includes.module.eks.aws_iam_role_policy_attachment.cluster_AmazonEKSVPCResourceControllerPolicy", + "module.includes.module.eks.aws_security_group.cluster", + "module.includes.module.eks.aws_security_group.workers", + "module.includes.module.eks.aws_security_group_rule.cluster_egress_internet", + "module.includes.module.eks.aws_security_group_rule.cluster_https_worker_ingress", + "module.includes.module.eks.data.aws_iam_policy_document.cluster_assume_role_policy", + "module.includes.module.eks.data.aws_iam_role.custom_cluster_iam_role", + "module.includes.module.eks.data.aws_partition.current", + "module.includes.module.vpc.aws_subnet.private", + "module.includes.module.vpc.aws_vpc.this", + "module.includes.module.vpc.aws_vpc_ipv4_cidr_block_association.this", + "module.includes.random_string.suffix" + ] + } + ] + }, + { + "module": "module.includes.module.eks.module.fargate", + "mode": "data", + "type": "aws_partition", + "name": "current", + "provider": "provider[\"registry.terraform.io/hashicorp/aws\"]", + "instances": [ + { + "schema_version": 0, + "attributes": { + "dns_suffix": "amazonaws.com", + "id": "aws", + "partition": "aws", + "reverse_dns_prefix": "com.amazonaws" + }, + "sensitive_attributes": [] + } + ] + }, + { + "module": "module.includes.module.vpc", + "mode": "managed", + "type": "aws_eip", + "name": "nat", + "provider": "provider[\"registry.terraform.io/hashicorp/aws\"]", + "instances": [ + { + "index_key": 0, + "schema_version": 0, + "attributes": { + "address": null, + "allocation_id": "eipalloc-06c15d995e8607041", + "associate_with_private_ip": null, + "association_id": "eipassoc-0265a9b85eeb38eb9", + "carrier_ip": "", + "customer_owned_ip": "", + "customer_owned_ipv4_pool": "", + "domain": "vpc", + "id": "eipalloc-06c15d995e8607041", + "instance": "", + "network_border_group": "us-east-1", + "network_interface": "eni-0b8f51a881f87fbee", + "private_dns": "ip-10-0-4-126.ec2.internal", + "private_ip": "10.0.4.126", + "public_dns": "ec2-3-229-43-228.compute-1.amazonaws.com", + "public_ip": "3.229.43.228", + "public_ipv4_pool": "amazon", + "tags": { + "Name": "snyk-demo-vpc-us-east-1a", + "kubernetes.io/cluster/snyk-demo-eks-w8w5o": "shared" + }, + "tags_all": { + "Name": "snyk-demo-vpc-us-east-1a", + "kubernetes.io/cluster/snyk-demo-eks-w8w5o": "shared" + }, + "timeouts": null, + "vpc": true + }, + "sensitive_attributes": [], + "private": "eyJlMmJmYjczMC1lY2FhLTExZTYtOGY4OC0zNDM2M2JjN2M0YzAiOnsiZGVsZXRlIjoxODAwMDAwMDAwMDAsInJlYWQiOjkwMDAwMDAwMDAwMCwidXBkYXRlIjozMDAwMDAwMDAwMDB9fQ==", + "dependencies": [ + "module.includes.data.aws_availability_zones.available", + "module.includes.random_string.suffix" + ] + } + ] + }, + { + "module": "module.includes.module.vpc", + "mode": "managed", + "type": "aws_internet_gateway", + "name": "this", + "provider": "provider[\"registry.terraform.io/hashicorp/aws\"]", + "instances": [ + { + "index_key": 0, + "schema_version": 0, + "attributes": { + "arn": "arn:aws:ec2:us-east-1:300326902600:internet-gateway/igw-03ed76ce9fba9dbfc", + "id": "igw-03ed76ce9fba9dbfc", + "owner_id": "300326902600", + "tags": { + "Name": "snyk-demo-vpc", + "kubernetes.io/cluster/snyk-demo-eks-w8w5o": "shared" + }, + "tags_all": { + "Name": "snyk-demo-vpc", + "kubernetes.io/cluster/snyk-demo-eks-w8w5o": "shared" + }, + "vpc_id": "vpc-06a175864b219d14c" + }, + "sensitive_attributes": [], + "private": "bnVsbA==", + "dependencies": [ + "module.includes.module.vpc.aws_vpc.this", + "module.includes.module.vpc.aws_vpc_ipv4_cidr_block_association.this", + "module.includes.random_string.suffix" + ] + } + ] + }, + { + "module": "module.includes.module.vpc", + "mode": "managed", + "type": "aws_nat_gateway", + "name": "this", + "provider": "provider[\"registry.terraform.io/hashicorp/aws\"]", + "instances": [ + { + "index_key": 0, + "schema_version": 0, + "attributes": { + "allocation_id": "eipalloc-06c15d995e8607041", + "connectivity_type": "public", + "id": "nat-0e2b8d51c73363a8b", + "network_interface_id": "eni-0b8f51a881f87fbee", + "private_ip": "10.0.4.126", + "public_ip": "3.229.43.228", + "subnet_id": "subnet-050c64dca16a448b4", + "tags": { + "Name": "snyk-demo-vpc-us-east-1a", + "kubernetes.io/cluster/snyk-demo-eks-w8w5o": "shared" + }, + "tags_all": { + "Name": "snyk-demo-vpc-us-east-1a", + "kubernetes.io/cluster/snyk-demo-eks-w8w5o": "shared" + } + }, + "sensitive_attributes": [], + "private": "bnVsbA==", + "dependencies": [ + "module.includes.data.aws_availability_zones.available", + "module.includes.module.vpc.aws_eip.nat", + "module.includes.module.vpc.aws_internet_gateway.this", + "module.includes.module.vpc.aws_subnet.public", + "module.includes.module.vpc.aws_vpc.this", + "module.includes.module.vpc.aws_vpc_ipv4_cidr_block_association.this", + "module.includes.random_string.suffix" + ] + } + ] + }, + { + "module": "module.includes.module.vpc", + "mode": "managed", + "type": "aws_route", + "name": "private_nat_gateway", + "provider": "provider[\"registry.terraform.io/hashicorp/aws\"]", + "instances": [ + { + "index_key": 0, + "schema_version": 0, + "attributes": { + "carrier_gateway_id": "", + "destination_cidr_block": "0.0.0.0/0", + "destination_ipv6_cidr_block": "", + "destination_prefix_list_id": "", + "egress_only_gateway_id": "", + "gateway_id": "", + "id": "r-rtb-039b8d6beb8ff71f01080289494", + "instance_id": "", + "instance_owner_id": "", + "local_gateway_id": "", + "nat_gateway_id": "nat-0e2b8d51c73363a8b", + "network_interface_id": "", + "origin": "CreateRoute", + "route_table_id": "rtb-039b8d6beb8ff71f0", + "state": "active", + "timeouts": { + "create": "5m", + "delete": null, + "update": null + }, + "transit_gateway_id": "", + "vpc_endpoint_id": "", + "vpc_peering_connection_id": "" + }, + "sensitive_attributes": [], + "private": "eyJlMmJmYjczMC1lY2FhLTExZTYtOGY4OC0zNDM2M2JjN2M0YzAiOnsiY3JlYXRlIjozMDAwMDAwMDAwMDAsImRlbGV0ZSI6MzAwMDAwMDAwMDAwLCJ1cGRhdGUiOjEyMDAwMDAwMDAwMH19", + "dependencies": [ + "module.includes.data.aws_availability_zones.available", + "module.includes.module.vpc.aws_eip.nat", + "module.includes.module.vpc.aws_internet_gateway.this", + "module.includes.module.vpc.aws_nat_gateway.this", + "module.includes.module.vpc.aws_route_table.private", + "module.includes.module.vpc.aws_subnet.public", + "module.includes.module.vpc.aws_vpc.this", + "module.includes.module.vpc.aws_vpc_ipv4_cidr_block_association.this", + "module.includes.random_string.suffix" + ] + } + ] + }, + { + "module": "module.includes.module.vpc", + "mode": "managed", + "type": "aws_route", + "name": "public_internet_gateway", + "provider": "provider[\"registry.terraform.io/hashicorp/aws\"]", + "instances": [ + { + "index_key": 0, + "schema_version": 0, + "attributes": { + "carrier_gateway_id": "", + "destination_cidr_block": "0.0.0.0/0", + "destination_ipv6_cidr_block": "", + "destination_prefix_list_id": "", + "egress_only_gateway_id": "", + "gateway_id": "igw-03ed76ce9fba9dbfc", + "id": "r-rtb-0d112cd769a3994d81080289494", + "instance_id": "", + "instance_owner_id": "", + "local_gateway_id": "", + "nat_gateway_id": "", + "network_interface_id": "", + "origin": "CreateRoute", + "route_table_id": "rtb-0d112cd769a3994d8", + "state": "active", + "timeouts": { + "create": "5m", + "delete": null, + "update": null + }, + "transit_gateway_id": "", + "vpc_endpoint_id": "", + "vpc_peering_connection_id": "" + }, + "sensitive_attributes": [], + "private": "eyJlMmJmYjczMC1lY2FhLTExZTYtOGY4OC0zNDM2M2JjN2M0YzAiOnsiY3JlYXRlIjozMDAwMDAwMDAwMDAsImRlbGV0ZSI6MzAwMDAwMDAwMDAwLCJ1cGRhdGUiOjEyMDAwMDAwMDAwMH19", + "dependencies": [ + "module.includes.module.vpc.aws_internet_gateway.this", + "module.includes.module.vpc.aws_route_table.public", + "module.includes.module.vpc.aws_vpc.this", + "module.includes.module.vpc.aws_vpc_ipv4_cidr_block_association.this", + "module.includes.random_string.suffix" + ] + } + ] + }, + { + "module": "module.includes.module.vpc", + "mode": "managed", + "type": "aws_route_table", + "name": "private", + "provider": "provider[\"registry.terraform.io/hashicorp/aws\"]", + "instances": [ + { + "index_key": 0, + "schema_version": 0, + "attributes": { + "arn": "arn:aws:ec2:us-east-1:300326902600:route-table/rtb-039b8d6beb8ff71f0", + "id": "rtb-039b8d6beb8ff71f0", + "owner_id": "300326902600", + "propagating_vgws": [], + "route": [ + { + "carrier_gateway_id": "", + "cidr_block": "0.0.0.0/0", + "destination_prefix_list_id": "", + "egress_only_gateway_id": "", + "gateway_id": "", + "instance_id": "", + "ipv6_cidr_block": "", + "local_gateway_id": "", + "nat_gateway_id": "nat-0e2b8d51c73363a8b", + "network_interface_id": "", + "transit_gateway_id": "", + "vpc_endpoint_id": "", + "vpc_peering_connection_id": "" + } + ], + "tags": { + "Name": "snyk-demo-vpc-private", + "kubernetes.io/cluster/snyk-demo-eks-w8w5o": "shared" + }, + "tags_all": { + "Name": "snyk-demo-vpc-private", + "kubernetes.io/cluster/snyk-demo-eks-w8w5o": "shared" + }, + "timeouts": null, + "vpc_id": "vpc-06a175864b219d14c" + }, + "sensitive_attributes": [], + "private": "eyJlMmJmYjczMC1lY2FhLTExZTYtOGY4OC0zNDM2M2JjN2M0YzAiOnsiY3JlYXRlIjozMDAwMDAwMDAwMDAsImRlbGV0ZSI6MzAwMDAwMDAwMDAwLCJ1cGRhdGUiOjEyMDAwMDAwMDAwMH19", + "dependencies": [ + "module.includes.data.aws_availability_zones.available", + "module.includes.module.vpc.aws_vpc.this", + "module.includes.module.vpc.aws_vpc_ipv4_cidr_block_association.this", + "module.includes.random_string.suffix" + ] + } + ] + }, + { + "module": "module.includes.module.vpc", + "mode": "managed", + "type": "aws_route_table", + "name": "public", + "provider": "provider[\"registry.terraform.io/hashicorp/aws\"]", + "instances": [ + { + "index_key": 0, + "schema_version": 0, + "attributes": { + "arn": "arn:aws:ec2:us-east-1:300326902600:route-table/rtb-0d112cd769a3994d8", + "id": "rtb-0d112cd769a3994d8", + "owner_id": "300326902600", + "propagating_vgws": [], + "route": [ + { + "carrier_gateway_id": "", + "cidr_block": "0.0.0.0/0", + "destination_prefix_list_id": "", + "egress_only_gateway_id": "", + "gateway_id": "igw-03ed76ce9fba9dbfc", + "instance_id": "", + "ipv6_cidr_block": "", + "local_gateway_id": "", + "nat_gateway_id": "", + "network_interface_id": "", + "transit_gateway_id": "", + "vpc_endpoint_id": "", + "vpc_peering_connection_id": "" + } + ], + "tags": { + "Name": "snyk-demo-vpc-public", + "kubernetes.io/cluster/snyk-demo-eks-w8w5o": "shared" + }, + "tags_all": { + "Name": "snyk-demo-vpc-public", + "kubernetes.io/cluster/snyk-demo-eks-w8w5o": "shared" + }, + "timeouts": null, + "vpc_id": "vpc-06a175864b219d14c" + }, + "sensitive_attributes": [], + "private": "eyJlMmJmYjczMC1lY2FhLTExZTYtOGY4OC0zNDM2M2JjN2M0YzAiOnsiY3JlYXRlIjozMDAwMDAwMDAwMDAsImRlbGV0ZSI6MzAwMDAwMDAwMDAwLCJ1cGRhdGUiOjEyMDAwMDAwMDAwMH19", + "dependencies": [ + "module.includes.module.vpc.aws_vpc.this", + "module.includes.module.vpc.aws_vpc_ipv4_cidr_block_association.this", + "module.includes.random_string.suffix" + ] + } + ] + }, + { + "module": "module.includes.module.vpc", + "mode": "managed", + "type": "aws_route_table_association", + "name": "private", + "provider": "provider[\"registry.terraform.io/hashicorp/aws\"]", + "instances": [ + { + "index_key": 0, + "schema_version": 0, + "attributes": { + "gateway_id": "", + "id": "rtbassoc-09297c033915b0e13", + "route_table_id": "rtb-039b8d6beb8ff71f0", + "subnet_id": "subnet-09b35110a487517bb" + }, + "sensitive_attributes": [], + "private": "bnVsbA==", + "dependencies": [ + "module.includes.data.aws_availability_zones.available", + "module.includes.module.vpc.aws_route_table.private", + "module.includes.module.vpc.aws_subnet.private", + "module.includes.module.vpc.aws_vpc.this", + "module.includes.module.vpc.aws_vpc_ipv4_cidr_block_association.this", + "module.includes.random_string.suffix" + ] + }, + { + "index_key": 1, + "schema_version": 0, + "attributes": { + "gateway_id": "", + "id": "rtbassoc-0740de82e1175f64f", + "route_table_id": "rtb-039b8d6beb8ff71f0", + "subnet_id": "subnet-0740635e9b399247c" + }, + "sensitive_attributes": [], + "private": "bnVsbA==", + "dependencies": [ + "module.includes.data.aws_availability_zones.available", + "module.includes.module.vpc.aws_route_table.private", + "module.includes.module.vpc.aws_subnet.private", + "module.includes.module.vpc.aws_vpc.this", + "module.includes.module.vpc.aws_vpc_ipv4_cidr_block_association.this", + "module.includes.random_string.suffix" + ] + }, + { + "index_key": 2, + "schema_version": 0, + "attributes": { + "gateway_id": "", + "id": "rtbassoc-0354ecd1437a59e4a", + "route_table_id": "rtb-039b8d6beb8ff71f0", + "subnet_id": "subnet-018afd439677a419b" + }, + "sensitive_attributes": [], + "private": "bnVsbA==", + "dependencies": [ + "module.includes.data.aws_availability_zones.available", + "module.includes.module.vpc.aws_route_table.private", + "module.includes.module.vpc.aws_subnet.private", + "module.includes.module.vpc.aws_vpc.this", + "module.includes.module.vpc.aws_vpc_ipv4_cidr_block_association.this", + "module.includes.random_string.suffix" + ] + } + ] + }, + { + "module": "module.includes.module.vpc", + "mode": "managed", + "type": "aws_route_table_association", + "name": "public", + "provider": "provider[\"registry.terraform.io/hashicorp/aws\"]", + "instances": [ + { + "index_key": 0, + "schema_version": 0, + "attributes": { + "gateway_id": "", + "id": "rtbassoc-0900d297482925c68", + "route_table_id": "rtb-0d112cd769a3994d8", + "subnet_id": "subnet-050c64dca16a448b4" + }, + "sensitive_attributes": [], + "private": "bnVsbA==", + "dependencies": [ + "module.includes.data.aws_availability_zones.available", + "module.includes.module.vpc.aws_route_table.public", + "module.includes.module.vpc.aws_subnet.public", + "module.includes.module.vpc.aws_vpc.this", + "module.includes.module.vpc.aws_vpc_ipv4_cidr_block_association.this", + "module.includes.random_string.suffix" + ] + }, + { + "index_key": 1, + "schema_version": 0, + "attributes": { + "gateway_id": "", + "id": "rtbassoc-0d61af631fadbde62", + "route_table_id": "rtb-0d112cd769a3994d8", + "subnet_id": "subnet-08506ae2aba39e024" + }, + "sensitive_attributes": [], + "private": "bnVsbA==", + "dependencies": [ + "module.includes.data.aws_availability_zones.available", + "module.includes.module.vpc.aws_route_table.public", + "module.includes.module.vpc.aws_subnet.public", + "module.includes.module.vpc.aws_vpc.this", + "module.includes.module.vpc.aws_vpc_ipv4_cidr_block_association.this", + "module.includes.random_string.suffix" + ] + }, + { + "index_key": 2, + "schema_version": 0, + "attributes": { + "gateway_id": "", + "id": "rtbassoc-0d80cfc0e12388a2c", + "route_table_id": "rtb-0d112cd769a3994d8", + "subnet_id": "subnet-091c461b22f97d77e" + }, + "sensitive_attributes": [], + "private": "bnVsbA==", + "dependencies": [ + "module.includes.data.aws_availability_zones.available", + "module.includes.module.vpc.aws_route_table.public", + "module.includes.module.vpc.aws_subnet.public", + "module.includes.module.vpc.aws_vpc.this", + "module.includes.module.vpc.aws_vpc_ipv4_cidr_block_association.this", + "module.includes.random_string.suffix" + ] + } + ] + }, + { + "module": "module.includes.module.vpc", + "mode": "managed", + "type": "aws_subnet", + "name": "private", + "provider": "provider[\"registry.terraform.io/hashicorp/aws\"]", + "instances": [ + { + "index_key": 0, + "schema_version": 1, + "attributes": { + "arn": "arn:aws:ec2:us-east-1:300326902600:subnet/subnet-09b35110a487517bb", + "assign_ipv6_address_on_creation": false, + "availability_zone": "us-east-1a", + "availability_zone_id": "use1-az6", + "cidr_block": "10.0.1.0/24", + "customer_owned_ipv4_pool": "", + "enable_dns64": false, + "enable_resource_name_dns_a_record_on_launch": false, + "enable_resource_name_dns_aaaa_record_on_launch": false, + "id": "subnet-09b35110a487517bb", + "ipv6_cidr_block": "", + "ipv6_cidr_block_association_id": "", + "ipv6_native": false, + "map_customer_owned_ip_on_launch": false, + "map_public_ip_on_launch": false, + "outpost_arn": "", + "owner_id": "300326902600", + "private_dns_hostname_type_on_launch": "ip-name", + "tags": { + "Name": "snyk-demo-vpc-private-us-east-1a", + "kubernetes.io/cluster/snyk-demo-eks-w8w5o": "shared", + "kubernetes.io/role/internal-elb": "1" + }, + "tags_all": { + "Name": "snyk-demo-vpc-private-us-east-1a", + "kubernetes.io/cluster/snyk-demo-eks-w8w5o": "shared", + "kubernetes.io/role/internal-elb": "1" + }, + "timeouts": null, + "vpc_id": "vpc-06a175864b219d14c" + }, + "sensitive_attributes": [], + "private": "eyJlMmJmYjczMC1lY2FhLTExZTYtOGY4OC0zNDM2M2JjN2M0YzAiOnsiY3JlYXRlIjo2MDAwMDAwMDAwMDAsImRlbGV0ZSI6MTIwMDAwMDAwMDAwMH0sInNjaGVtYV92ZXJzaW9uIjoiMSJ9", + "dependencies": [ + "module.includes.data.aws_availability_zones.available", + "module.includes.module.vpc.aws_vpc.this", + "module.includes.module.vpc.aws_vpc_ipv4_cidr_block_association.this", + "module.includes.random_string.suffix" + ], + "create_before_destroy": true + }, + { + "index_key": 1, + "schema_version": 1, + "attributes": { + "arn": "arn:aws:ec2:us-east-1:300326902600:subnet/subnet-0740635e9b399247c", + "assign_ipv6_address_on_creation": false, + "availability_zone": "us-east-1b", + "availability_zone_id": "use1-az1", + "cidr_block": "10.0.2.0/24", + "customer_owned_ipv4_pool": "", + "enable_dns64": false, + "enable_resource_name_dns_a_record_on_launch": false, + "enable_resource_name_dns_aaaa_record_on_launch": false, + "id": "subnet-0740635e9b399247c", + "ipv6_cidr_block": "", + "ipv6_cidr_block_association_id": "", + "ipv6_native": false, + "map_customer_owned_ip_on_launch": false, + "map_public_ip_on_launch": false, + "outpost_arn": "", + "owner_id": "300326902600", + "private_dns_hostname_type_on_launch": "ip-name", + "tags": { + "Name": "snyk-demo-vpc-private-us-east-1b", + "kubernetes.io/cluster/snyk-demo-eks-w8w5o": "shared", + "kubernetes.io/role/internal-elb": "1" + }, + "tags_all": { + "Name": "snyk-demo-vpc-private-us-east-1b", + "kubernetes.io/cluster/snyk-demo-eks-w8w5o": "shared", + "kubernetes.io/role/internal-elb": "1" + }, + "timeouts": null, + "vpc_id": "vpc-06a175864b219d14c" + }, + "sensitive_attributes": [], + "private": "eyJlMmJmYjczMC1lY2FhLTExZTYtOGY4OC0zNDM2M2JjN2M0YzAiOnsiY3JlYXRlIjo2MDAwMDAwMDAwMDAsImRlbGV0ZSI6MTIwMDAwMDAwMDAwMH0sInNjaGVtYV92ZXJzaW9uIjoiMSJ9", + "dependencies": [ + "module.includes.data.aws_availability_zones.available", + "module.includes.module.vpc.aws_vpc.this", + "module.includes.module.vpc.aws_vpc_ipv4_cidr_block_association.this", + "module.includes.random_string.suffix" + ], + "create_before_destroy": true + }, + { + "index_key": 2, + "schema_version": 1, + "attributes": { + "arn": "arn:aws:ec2:us-east-1:300326902600:subnet/subnet-018afd439677a419b", + "assign_ipv6_address_on_creation": false, + "availability_zone": "us-east-1c", + "availability_zone_id": "use1-az2", + "cidr_block": "10.0.3.0/24", + "customer_owned_ipv4_pool": "", + "enable_dns64": false, + "enable_resource_name_dns_a_record_on_launch": false, + "enable_resource_name_dns_aaaa_record_on_launch": false, + "id": "subnet-018afd439677a419b", + "ipv6_cidr_block": "", + "ipv6_cidr_block_association_id": "", + "ipv6_native": false, + "map_customer_owned_ip_on_launch": false, + "map_public_ip_on_launch": false, + "outpost_arn": "", + "owner_id": "300326902600", + "private_dns_hostname_type_on_launch": "ip-name", + "tags": { + "Name": "snyk-demo-vpc-private-us-east-1c", + "kubernetes.io/cluster/snyk-demo-eks-w8w5o": "shared", + "kubernetes.io/role/internal-elb": "1" + }, + "tags_all": { + "Name": "snyk-demo-vpc-private-us-east-1c", + "kubernetes.io/cluster/snyk-demo-eks-w8w5o": "shared", + "kubernetes.io/role/internal-elb": "1" + }, + "timeouts": null, + "vpc_id": "vpc-06a175864b219d14c" + }, + "sensitive_attributes": [], + "private": "eyJlMmJmYjczMC1lY2FhLTExZTYtOGY4OC0zNDM2M2JjN2M0YzAiOnsiY3JlYXRlIjo2MDAwMDAwMDAwMDAsImRlbGV0ZSI6MTIwMDAwMDAwMDAwMH0sInNjaGVtYV92ZXJzaW9uIjoiMSJ9", + "dependencies": [ + "module.includes.data.aws_availability_zones.available", + "module.includes.module.vpc.aws_vpc.this", + "module.includes.module.vpc.aws_vpc_ipv4_cidr_block_association.this", + "module.includes.random_string.suffix" + ], + "create_before_destroy": true + } + ] + }, + { + "module": "module.includes.module.vpc", + "mode": "managed", + "type": "aws_subnet", + "name": "public", + "provider": "provider[\"registry.terraform.io/hashicorp/aws\"]", + "instances": [ + { + "index_key": 0, + "schema_version": 1, + "attributes": { + "arn": "arn:aws:ec2:us-east-1:300326902600:subnet/subnet-050c64dca16a448b4", + "assign_ipv6_address_on_creation": false, + "availability_zone": "us-east-1a", + "availability_zone_id": "use1-az6", + "cidr_block": "10.0.4.0/24", + "customer_owned_ipv4_pool": "", + "enable_dns64": false, + "enable_resource_name_dns_a_record_on_launch": false, + "enable_resource_name_dns_aaaa_record_on_launch": false, + "id": "subnet-050c64dca16a448b4", + "ipv6_cidr_block": "", + "ipv6_cidr_block_association_id": "", + "ipv6_native": false, + "map_customer_owned_ip_on_launch": false, + "map_public_ip_on_launch": true, + "outpost_arn": "", + "owner_id": "300326902600", + "private_dns_hostname_type_on_launch": "ip-name", + "tags": { + "Name": "snyk-demo-vpc-public-us-east-1a", + "kubernetes.io/cluster/snyk-demo-eks-w8w5o": "shared", + "kubernetes.io/role/elb": "1" + }, + "tags_all": { + "Name": "snyk-demo-vpc-public-us-east-1a", + "kubernetes.io/cluster/snyk-demo-eks-w8w5o": "shared", + "kubernetes.io/role/elb": "1" + }, + "timeouts": null, + "vpc_id": "vpc-06a175864b219d14c" + }, + "sensitive_attributes": [], + "private": "eyJlMmJmYjczMC1lY2FhLTExZTYtOGY4OC0zNDM2M2JjN2M0YzAiOnsiY3JlYXRlIjo2MDAwMDAwMDAwMDAsImRlbGV0ZSI6MTIwMDAwMDAwMDAwMH0sInNjaGVtYV92ZXJzaW9uIjoiMSJ9", + "dependencies": [ + "module.includes.data.aws_availability_zones.available", + "module.includes.module.vpc.aws_vpc.this", + "module.includes.module.vpc.aws_vpc_ipv4_cidr_block_association.this", + "module.includes.random_string.suffix" + ] + }, + { + "index_key": 1, + "schema_version": 1, + "attributes": { + "arn": "arn:aws:ec2:us-east-1:300326902600:subnet/subnet-08506ae2aba39e024", + "assign_ipv6_address_on_creation": false, + "availability_zone": "us-east-1b", + "availability_zone_id": "use1-az1", + "cidr_block": "10.0.5.0/24", + "customer_owned_ipv4_pool": "", + "enable_dns64": false, + "enable_resource_name_dns_a_record_on_launch": false, + "enable_resource_name_dns_aaaa_record_on_launch": false, + "id": "subnet-08506ae2aba39e024", + "ipv6_cidr_block": "", + "ipv6_cidr_block_association_id": "", + "ipv6_native": false, + "map_customer_owned_ip_on_launch": false, + "map_public_ip_on_launch": true, + "outpost_arn": "", + "owner_id": "300326902600", + "private_dns_hostname_type_on_launch": "ip-name", + "tags": { + "Name": "snyk-demo-vpc-public-us-east-1b", + "kubernetes.io/cluster/snyk-demo-eks-w8w5o": "shared", + "kubernetes.io/role/elb": "1" + }, + "tags_all": { + "Name": "snyk-demo-vpc-public-us-east-1b", + "kubernetes.io/cluster/snyk-demo-eks-w8w5o": "shared", + "kubernetes.io/role/elb": "1" + }, + "timeouts": null, + "vpc_id": "vpc-06a175864b219d14c" + }, + "sensitive_attributes": [], + "private": "eyJlMmJmYjczMC1lY2FhLTExZTYtOGY4OC0zNDM2M2JjN2M0YzAiOnsiY3JlYXRlIjo2MDAwMDAwMDAwMDAsImRlbGV0ZSI6MTIwMDAwMDAwMDAwMH0sInNjaGVtYV92ZXJzaW9uIjoiMSJ9", + "dependencies": [ + "module.includes.data.aws_availability_zones.available", + "module.includes.module.vpc.aws_vpc.this", + "module.includes.module.vpc.aws_vpc_ipv4_cidr_block_association.this", + "module.includes.random_string.suffix" + ] + }, + { + "index_key": 2, + "schema_version": 1, + "attributes": { + "arn": "arn:aws:ec2:us-east-1:300326902600:subnet/subnet-091c461b22f97d77e", + "assign_ipv6_address_on_creation": false, + "availability_zone": "us-east-1c", + "availability_zone_id": "use1-az2", + "cidr_block": "10.0.6.0/24", + "customer_owned_ipv4_pool": "", + "enable_dns64": false, + "enable_resource_name_dns_a_record_on_launch": false, + "enable_resource_name_dns_aaaa_record_on_launch": false, + "id": "subnet-091c461b22f97d77e", + "ipv6_cidr_block": "", + "ipv6_cidr_block_association_id": "", + "ipv6_native": false, + "map_customer_owned_ip_on_launch": false, + "map_public_ip_on_launch": true, + "outpost_arn": "", + "owner_id": "300326902600", + "private_dns_hostname_type_on_launch": "ip-name", + "tags": { + "Name": "snyk-demo-vpc-public-us-east-1c", + "kubernetes.io/cluster/snyk-demo-eks-w8w5o": "shared", + "kubernetes.io/role/elb": "1" + }, + "tags_all": { + "Name": "snyk-demo-vpc-public-us-east-1c", + "kubernetes.io/cluster/snyk-demo-eks-w8w5o": "shared", + "kubernetes.io/role/elb": "1" + }, + "timeouts": null, + "vpc_id": "vpc-06a175864b219d14c" + }, + "sensitive_attributes": [], + "private": "eyJlMmJmYjczMC1lY2FhLTExZTYtOGY4OC0zNDM2M2JjN2M0YzAiOnsiY3JlYXRlIjo2MDAwMDAwMDAwMDAsImRlbGV0ZSI6MTIwMDAwMDAwMDAwMH0sInNjaGVtYV92ZXJzaW9uIjoiMSJ9", + "dependencies": [ + "module.includes.data.aws_availability_zones.available", + "module.includes.module.vpc.aws_vpc.this", + "module.includes.module.vpc.aws_vpc_ipv4_cidr_block_association.this", + "module.includes.random_string.suffix" + ] + } + ] + }, + { + "module": "module.includes.module.vpc", + "mode": "managed", + "type": "aws_vpc", + "name": "this", + "provider": "provider[\"registry.terraform.io/hashicorp/aws\"]", + "instances": [ + { + "index_key": 0, + "schema_version": 1, + "attributes": { + "arn": "arn:aws:ec2:us-east-1:300326902600:vpc/vpc-06a175864b219d14c", + "assign_generated_ipv6_cidr_block": false, + "cidr_block": "10.0.0.0/16", + "default_network_acl_id": "acl-03f4587eca9f9e6ab", + "default_route_table_id": "rtb-004641504f87b5069", + "default_security_group_id": "sg-0aad5e525fa148824", + "dhcp_options_id": "dopt-2e6c2755", + "enable_classiclink": false, + "enable_classiclink_dns_support": false, + "enable_dns_hostnames": true, + "enable_dns_support": true, + "id": "vpc-06a175864b219d14c", + "instance_tenancy": "default", + "ipv4_ipam_pool_id": null, + "ipv4_netmask_length": null, + "ipv6_association_id": "", + "ipv6_cidr_block": "", + "ipv6_ipam_pool_id": null, + "ipv6_netmask_length": null, + "main_route_table_id": "rtb-004641504f87b5069", + "owner_id": "300326902600", + "tags": { + "Name": "snyk-demo-vpc", + "kubernetes.io/cluster/snyk-demo-eks-w8w5o": "shared" + }, + "tags_all": { + "Name": "snyk-demo-vpc", + "kubernetes.io/cluster/snyk-demo-eks-w8w5o": "shared" + } + }, + "sensitive_attributes": [], + "private": "eyJzY2hlbWFfdmVyc2lvbiI6IjEifQ==", + "dependencies": [ + "module.includes.random_string.suffix" + ], + "create_before_destroy": true + } + ] + }, + { + "module": "module.sg", + "mode": "managed", + "type": "aws_security_group", + "name": "all_worker_mgmt", + "provider": "provider[\"registry.terraform.io/hashicorp/aws\"]", + "instances": [ + { + "schema_version": 1, + "attributes": { + "arn": "arn:aws:ec2:us-east-1:300326902600:security-group/sg-065c0786aeec011f2", + "description": "Managed by Terraform", + "egress": [], + "id": "sg-065c0786aeec011f2", + "ingress": [ + { + "cidr_blocks": [ + "10.0.0.0/8", + "172.16.0.0/12", + "192.168.0.0/16" + ], + "description": "", + "from_port": 22, + "ipv6_cidr_blocks": [], + "prefix_list_ids": [], + "protocol": "tcp", + "security_groups": [], + "self": false, + "to_port": 22 + } + ], + "name": "all_worker_management2022071915135363350000000d", + "name_prefix": "all_worker_management", + "owner_id": "300326902600", + "revoke_rules_on_delete": false, + "tags": {}, + "tags_all": {}, + "timeouts": null, + "vpc_id": "vpc-06a175864b219d14c" + }, + "sensitive_attributes": [], + "private": "eyJlMmJmYjczMC1lY2FhLTExZTYtOGY4OC0zNDM2M2JjN2M0YzAiOnsiY3JlYXRlIjo2MDAwMDAwMDAwMDAsImRlbGV0ZSI6OTAwMDAwMDAwMDAwfSwic2NoZW1hX3ZlcnNpb24iOiIxIn0=", + "dependencies": [ + "module.includes.module.vpc.aws_vpc.this", + "module.includes.random_string.suffix" + ] + } + ] + }, + { + "module": "module.sg", + "mode": "managed", + "type": "aws_security_group", + "name": "snyk_rds_sg", + "provider": "provider[\"registry.terraform.io/hashicorp/aws\"]", + "instances": [ + { + "schema_version": 1, + "attributes": { + "arn": "arn:aws:ec2:us-east-1:300326902600:security-group/sg-0598ef6b213e6fb2e", + "description": "Managed by Terraform", + "egress": [ + { + "cidr_blocks": [ + "0.0.0.0/0" + ], + "description": "", + "from_port": 0, + "ipv6_cidr_blocks": [], + "prefix_list_ids": [], + "protocol": "-1", + "security_groups": [], + "self": false, + "to_port": 0 + } + ], + "id": "sg-0598ef6b213e6fb2e", + "ingress": [ + { + "cidr_blocks": [ + "0.0.0.0/0" + ], + "description": "", + "from_port": 5432, + "ipv6_cidr_blocks": [], + "prefix_list_ids": [], + "protocol": "tcp", + "security_groups": [], + "self": false, + "to_port": 5432 + } + ], + "name": "snyk_demo_rds_sg", + "name_prefix": "", + "owner_id": "300326902600", + "revoke_rules_on_delete": false, + "tags": { + "Name": "snyk_demo_rds_sg" + }, + "tags_all": { + "Name": "snyk_demo_rds_sg" + }, + "timeouts": null, + "vpc_id": "vpc-06a175864b219d14c" + }, + "sensitive_attributes": [], + "private": "eyJlMmJmYjczMC1lY2FhLTExZTYtOGY4OC0zNDM2M2JjN2M0YzAiOnsiY3JlYXRlIjo2MDAwMDAwMDAwMDAsImRlbGV0ZSI6OTAwMDAwMDAwMDAwfSwic2NoZW1hX3ZlcnNpb24iOiIxIn0=", + "dependencies": [ + "module.includes.module.vpc.aws_vpc.this", + "module.includes.random_string.suffix" + ] + } + ] + }, + { + "module": "module.sg", + "mode": "managed", + "type": "aws_security_group", + "name": "worker_group_mgmt_one", + "provider": "provider[\"registry.terraform.io/hashicorp/aws\"]", + "instances": [ + { + "schema_version": 1, + "attributes": { + "arn": "arn:aws:ec2:us-east-1:300326902600:security-group/sg-0942cb2cea6889842", + "description": "Managed by Terraform", + "egress": [], + "id": "sg-0942cb2cea6889842", + "ingress": [ + { + "cidr_blocks": [ + "10.0.0.0/8" + ], + "description": "", + "from_port": 22, + "ipv6_cidr_blocks": [], + "prefix_list_ids": [], + "protocol": "tcp", + "security_groups": [], + "self": false, + "to_port": 22 + } + ], + "name": "worker_group_mgmt_one2022071915135361310000000c", + "name_prefix": "worker_group_mgmt_one", + "owner_id": "300326902600", + "revoke_rules_on_delete": false, + "tags": {}, + "tags_all": {}, + "timeouts": null, + "vpc_id": "vpc-06a175864b219d14c" + }, + "sensitive_attributes": [], + "private": "eyJlMmJmYjczMC1lY2FhLTExZTYtOGY4OC0zNDM2M2JjN2M0YzAiOnsiY3JlYXRlIjo2MDAwMDAwMDAwMDAsImRlbGV0ZSI6OTAwMDAwMDAwMDAwfSwic2NoZW1hX3ZlcnNpb24iOiIxIn0=", + "dependencies": [ + "module.includes.module.vpc.aws_vpc.this", + "module.includes.random_string.suffix" + ], + "create_before_destroy": true + } + ] + }, + { + "module": "module.sg", + "mode": "managed", + "type": "aws_security_group", + "name": "worker_group_mgmt_two", + "provider": "provider[\"registry.terraform.io/hashicorp/aws\"]", + "instances": [ + { + "schema_version": 1, + "attributes": { + "arn": "arn:aws:ec2:us-east-1:300326902600:security-group/sg-058269446c107f427", + "description": "Managed by Terraform", + "egress": [], + "id": "sg-058269446c107f427", + "ingress": [ + { + "cidr_blocks": [ + "192.168.0.0/16" + ], + "description": "", + "from_port": 22, + "ipv6_cidr_blocks": [], + "prefix_list_ids": [], + "protocol": "tcp", + "security_groups": [], + "self": false, + "to_port": 22 + } + ], + "name": "worker_group_mgmt_two2022071915135350380000000b", + "name_prefix": "worker_group_mgmt_two", + "owner_id": "300326902600", + "revoke_rules_on_delete": false, + "tags": {}, + "tags_all": {}, + "timeouts": null, + "vpc_id": "vpc-06a175864b219d14c" + }, + "sensitive_attributes": [], + "private": "eyJlMmJmYjczMC1lY2FhLTExZTYtOGY4OC0zNDM2M2JjN2M0YzAiOnsiY3JlYXRlIjo2MDAwMDAwMDAwMDAsImRlbGV0ZSI6OTAwMDAwMDAwMDAwfSwic2NoZW1hX3ZlcnNpb24iOiIxIn0=", + "dependencies": [ + "module.includes.module.vpc.aws_vpc.this", + "module.includes.random_string.suffix" + ], + "create_before_destroy": true + } + ] + }, + { + "module": "module.storage", + "mode": "managed", + "type": "aws_db_instance", + "name": "snyk_db", + "provider": "provider[\"registry.terraform.io/hashicorp/aws\"]", + "instances": [ + { + "schema_version": 1, + "attributes": { + "address": "snyk-db-demo.cr0agsnhmx5g.us-east-1.rds.amazonaws.com", + "allocated_storage": 20, + "allow_major_version_upgrade": null, + "apply_immediately": null, + "arn": "arn:aws:rds:us-east-1:300326902600:db:snyk-db-demo", + "auto_minor_version_upgrade": true, + "availability_zone": "us-east-1c", + "backup_retention_period": 0, + "backup_window": "04:25-04:55", + "ca_cert_identifier": "rds-ca-2019", + "character_set_name": "", + "copy_tags_to_snapshot": false, + "customer_owned_ip_enabled": false, + "db_subnet_group_name": "snyk_rds_subnet_grp_demo", + "delete_automated_backups": true, + "deletion_protection": false, + "domain": "", + "domain_iam_role_name": "", + "enabled_cloudwatch_logs_exports": null, + "endpoint": "snyk-db-demo.cr0agsnhmx5g.us-east-1.rds.amazonaws.com:5432", + "engine": "postgres", + "engine_version": "10.20", + "engine_version_actual": "10.20", + "final_snapshot_identifier": "snyk-demo-eks-w8w5o-db-destroy-snapshot", + "hosted_zone_id": "Z2R2ITUGPM61AM", + "iam_database_authentication_enabled": false, + "id": "snyk-db-demo", + "identifier": "snyk-db-demo", + "identifier_prefix": null, + "instance_class": "db.t3.micro", + "iops": 0, + "kms_key_id": "arn:aws:kms:us-east-1:300326902600:key/80eccf11-fc6c-436e-86e6-cb38c5e9d89e", + "latest_restorable_time": "0001-01-01T00:00:00Z", + "license_model": "postgresql-license", + "maintenance_window": "thu:03:19-thu:03:49", + "max_allocated_storage": 0, + "monitoring_interval": 0, + "monitoring_role_arn": "", + "multi_az": false, + "name": "snykdemoeksw8w5o", + "nchar_character_set_name": "", + "option_group_name": "default:postgres-10", + "parameter_group_name": "default.postgres10", + "password": "supersecret", + "performance_insights_enabled": false, + "performance_insights_kms_key_id": "", + "performance_insights_retention_period": 0, + "port": 5432, + "publicly_accessible": false, + "replica_mode": "", + "replicas": [], + "replicate_source_db": "", + "resource_id": "db-UNVLQKRSDBEFQC7XELAFZGBLXM", + "restore_to_point_in_time": [], + "s3_import": [], + "security_group_names": null, + "skip_final_snapshot": true, + "snapshot_identifier": null, + "status": "available", + "storage_encrypted": true, + "storage_type": "gp2", + "tags": { + "Name": "snyk_db_snyk-demo-eks-w8w5o" + }, + "tags_all": { + "Name": "snyk_db_snyk-demo-eks-w8w5o" + }, + "timeouts": null, + "timezone": "", + "username": "snyk", + "vpc_security_group_ids": [ + "sg-0598ef6b213e6fb2e" + ] + }, + "sensitive_attributes": [], + "private": "eyJlMmJmYjczMC1lY2FhLTExZTYtOGY4OC0zNDM2M2JjN2M0YzAiOnsiY3JlYXRlIjoyNDAwMDAwMDAwMDAwLCJkZWxldGUiOjM2MDAwMDAwMDAwMDAsInVwZGF0ZSI6NDgwMDAwMDAwMDAwMH0sInNjaGVtYV92ZXJzaW9uIjoiMSJ9", + "dependencies": [ + "module.includes.random_string.suffix", + "module.sg.aws_security_group.snyk_rds_sg", + "module.storage.aws_db_subnet_group.snyk_rds_subnet_grp", + "module.storage.aws_kms_key.snyk_db_kms_key" + ] + } + ] + }, + { + "module": "module.storage", + "mode": "managed", + "type": "aws_db_subnet_group", + "name": "snyk_rds_subnet_grp", + "provider": "provider[\"registry.terraform.io/hashicorp/aws\"]", + "instances": [ + { + "schema_version": 0, + "attributes": { + "arn": "arn:aws:rds:us-east-1:300326902600:subgrp:snyk_rds_subnet_grp_demo", + "description": "Managed by Terraform", + "id": "snyk_rds_subnet_grp_demo", + "name": "snyk_rds_subnet_grp_demo", + "name_prefix": null, + "subnet_ids": [ + "subnet-0db3088fefa751ce9", + "subnet-0f6022b947663313b" + ], + "tags": { + "Name": "snyk_rds_subnet_grp_snyk-demo-eks-w8w5o" + }, + "tags_all": { + "Name": "snyk_rds_subnet_grp_snyk-demo-eks-w8w5o" + } + }, + "sensitive_attributes": [], + "private": "bnVsbA==", + "dependencies": [ + "module.includes.module.vpc.aws_vpc.this", + "module.includes.random_string.suffix", + "module.subnets.aws_subnet.main", + "module.subnets.aws_subnet.secondary" + ] + } + ] + }, + { + "module": "module.storage", + "mode": "managed", + "type": "aws_kms_key", + "name": "snyk_db_kms_key", + "provider": "provider[\"registry.terraform.io/hashicorp/aws\"]", + "instances": [ + { + "schema_version": 0, + "attributes": { + "arn": "arn:aws:kms:us-east-1:300326902600:key/80eccf11-fc6c-436e-86e6-cb38c5e9d89e", + "bypass_policy_lockout_safety_check": false, + "customer_master_key_spec": "SYMMETRIC_DEFAULT", + "deletion_window_in_days": 10, + "description": "KMS Key for DB instance snyk-demo-eks-w8w5o", + "enable_key_rotation": true, + "id": "80eccf11-fc6c-436e-86e6-cb38c5e9d89e", + "is_enabled": true, + "key_id": "80eccf11-fc6c-436e-86e6-cb38c5e9d89e", + "key_usage": "ENCRYPT_DECRYPT", + "multi_region": false, + "policy": "{\"Id\":\"key-default-1\",\"Statement\":[{\"Action\":\"kms:*\",\"Effect\":\"Allow\",\"Principal\":{\"AWS\":\"arn:aws:iam::300326902600:root\"},\"Resource\":\"*\",\"Sid\":\"Enable IAM User Permissions\"}],\"Version\":\"2012-10-17\"}", + "tags": { + "Name": "snyk_db_kms_key_snyk-demo-eks-w8w5o" + }, + "tags_all": { + "Name": "snyk_db_kms_key_snyk-demo-eks-w8w5o" + } + }, + "sensitive_attributes": [], + "private": "bnVsbA==", + "dependencies": [ + "module.includes.random_string.suffix" + ] + } + ] + }, + { + "module": "module.storage", + "mode": "managed", + "type": "aws_s3_bucket", + "name": "my-new-undeployed-bucket", + "provider": "provider[\"registry.terraform.io/hashicorp/aws\"]", + "instances": [ + { + "schema_version": 0, + "attributes": { + "acceleration_status": "", + "acl": "private", + "arn": "arn:aws:s3:::snyk-demo-eks-w8w5o", + "bucket": "snyk-demo-eks-w8w5o", + "bucket_domain_name": "snyk-demo-eks-w8w5o.s3.amazonaws.com", + "bucket_prefix": null, + "bucket_regional_domain_name": "snyk-demo-eks-w8w5o.s3.amazonaws.com", + "cors_rule": [], + "force_destroy": false, + "grant": [], + "hosted_zone_id": "Z3AQBSTGFYJSTF", + "id": "snyk-demo-eks-w8w5o", + "lifecycle_rule": [], + "logging": [], + "object_lock_configuration": [], + "policy": null, + "region": "us-east-1", + "replication_configuration": [], + "request_payer": "BucketOwner", + "server_side_encryption_configuration": [], + "tags": {}, + "tags_all": {}, + "versioning": [ + { + "enabled": false, + "mfa_delete": false + } + ], + "website": [], + "website_domain": null, + "website_endpoint": null + }, + "sensitive_attributes": [], + "private": "bnVsbA==", + "dependencies": [ + "module.includes.random_string.suffix" + ] + } + ] + }, + { + "module": "module.storage", + "mode": "managed", + "type": "aws_s3_bucket", + "name": "snyk_storage", + "provider": "provider[\"registry.terraform.io/hashicorp/aws\"]", + "instances": [ + { + "schema_version": 0, + "attributes": { + "acceleration_status": "", + "acl": "private", + "arn": "arn:aws:s3:::snyk-demo-eks-w8w5o", + "bucket": "snyk-demo-eks-w8w5o", + "bucket_domain_name": "snyk-demo-eks-w8w5o.s3.amazonaws.com", + "bucket_prefix": null, + "bucket_regional_domain_name": "snyk-demo-eks-w8w5o.s3.amazonaws.com", + "cors_rule": [], + "force_destroy": false, + "grant": [], + "hosted_zone_id": "Z3AQBSTGFYJSTF", + "id": "snyk-demo-eks-w8w5o", + "lifecycle_rule": [], + "logging": [], + "object_lock_configuration": [], + "policy": null, + "region": "us-east-1", + "replication_configuration": [], + "request_payer": "BucketOwner", + "server_side_encryption_configuration": [], + "tags": { + "name": "snyk_blob_storage_snyk-demo-eks-w8w5o" + }, + "tags_all": { + "name": "snyk_blob_storage_snyk-demo-eks-w8w5o" + }, + "versioning": [ + { + "enabled": false, + "mfa_delete": false + } + ], + "website": [], + "website_domain": null, + "website_endpoint": null + }, + "sensitive_attributes": [], + "private": "bnVsbA==", + "dependencies": [ + "module.includes.random_string.suffix" + ] + } + ] + }, + { + "module": "module.storage", + "mode": "managed", + "type": "aws_s3_bucket_public_access_block", + "name": "snyk_private", + "provider": "provider[\"registry.terraform.io/hashicorp/aws\"]", + "instances": [ + { + "schema_version": 0, + "attributes": { + "block_public_acls": true, + "block_public_policy": true, + "bucket": "snyk-demo-eks-w8w5o", + "id": "snyk-demo-eks-w8w5o", + "ignore_public_acls": true, + "restrict_public_buckets": false + }, + "sensitive_attributes": [], + "private": "bnVsbA==", + "dependencies": [ + "module.includes.random_string.suffix", + "module.storage.aws_s3_bucket.snyk_storage" + ] + } + ] + }, + { + "module": "module.storage", + "mode": "managed", + "type": "aws_s3_bucket_public_access_block", + "name": "snyk_public", + "provider": "provider[\"registry.terraform.io/hashicorp/aws\"]", + "instances": [ + { + "schema_version": 0, + "attributes": { + "block_public_acls": false, + "block_public_policy": false, + "bucket": "snyk-demo-eks-w8w5o", + "id": "snyk-demo-eks-w8w5o", + "ignore_public_acls": false, + "restrict_public_buckets": false + }, + "sensitive_attributes": [], + "private": "bnVsbA==", + "dependencies": [ + "module.includes.random_string.suffix", + "module.storage.aws_s3_bucket.my-new-undeployed-bucket" + ] + } + ] + }, + { + "module": "module.storage", + "mode": "managed", + "type": "aws_ssm_parameter", + "name": "snyk_ssm_db_host", + "provider": "provider[\"registry.terraform.io/hashicorp/aws\"]", + "instances": [ + { + "schema_version": 0, + "attributes": { + "allowed_pattern": "", + "arn": "arn:aws:ssm:us-east-1:300326902600:parameter/snyk-snyk-demo-eks-w8w5o/DB_HOST", + "data_type": "text", + "description": "Snyk Database", + "id": "/snyk-snyk-demo-eks-w8w5o/DB_HOST", + "key_id": "alias/aws/ssm", + "name": "/snyk-snyk-demo-eks-w8w5o/DB_HOST", + "overwrite": null, + "tags": null, + "tags_all": {}, + "tier": "Standard", + "type": "SecureString", + "value": "snyk-db-demo.cr0agsnhmx5g.us-east-1.rds.amazonaws.com:5432", + "version": 1 + }, + "sensitive_attributes": [], + "private": "bnVsbA==", + "dependencies": [ + "module.includes.random_string.suffix", + "module.sg.aws_security_group.snyk_rds_sg", + "module.storage.aws_db_instance.snyk_db", + "module.storage.aws_db_subnet_group.snyk_rds_subnet_grp", + "module.storage.aws_kms_key.snyk_db_kms_key" + ] + } + ] + }, + { + "module": "module.storage", + "mode": "managed", + "type": "aws_ssm_parameter", + "name": "snyk_ssm_db_name", + "provider": "provider[\"registry.terraform.io/hashicorp/aws\"]", + "instances": [ + { + "schema_version": 0, + "attributes": { + "allowed_pattern": "", + "arn": "arn:aws:ssm:us-east-1:300326902600:parameter/snyk-snyk-demo-eks-w8w5o/DB_NAME", + "data_type": "text", + "description": "Snyk Database Name", + "id": "/snyk-snyk-demo-eks-w8w5o/DB_NAME", + "key_id": "alias/aws/ssm", + "name": "/snyk-snyk-demo-eks-w8w5o/DB_NAME", + "overwrite": null, + "tags": { + "environment": "snyk-demo-eks-w8w5o" + }, + "tags_all": { + "environment": "snyk-demo-eks-w8w5o" + }, + "tier": "Standard", + "type": "SecureString", + "value": "snykdemoeksw8w5o", + "version": 1 + }, + "sensitive_attributes": [], + "private": "bnVsbA==", + "dependencies": [ + "module.includes.random_string.suffix", + "module.sg.aws_security_group.snyk_rds_sg", + "module.storage.aws_db_instance.snyk_db", + "module.storage.aws_db_subnet_group.snyk_rds_subnet_grp", + "module.storage.aws_kms_key.snyk_db_kms_key" + ] + } + ] + }, + { + "module": "module.storage", + "mode": "managed", + "type": "aws_ssm_parameter", + "name": "snyk_ssm_db_password", + "provider": "provider[\"registry.terraform.io/hashicorp/aws\"]", + "instances": [ + { + "schema_version": 0, + "attributes": { + "allowed_pattern": "", + "arn": "arn:aws:ssm:us-east-1:300326902600:parameter/snyk-snyk-demo-eks-w8w5o/DB_PASSWORD", + "data_type": "text", + "description": "Snyk Database Password", + "id": "/snyk-snyk-demo-eks-w8w5o/DB_PASSWORD", + "key_id": "alias/aws/ssm", + "name": "/snyk-snyk-demo-eks-w8w5o/DB_PASSWORD", + "overwrite": null, + "tags": null, + "tags_all": {}, + "tier": "Standard", + "type": "SecureString", + "value": "supersecret", + "version": 1 + }, + "sensitive_attributes": [ + [ + { + "type": "get_attr", + "value": "value" + } + ] + ], + "private": "bnVsbA==", + "dependencies": [ + "module.includes.random_string.suffix", + "module.sg.aws_security_group.snyk_rds_sg", + "module.storage.aws_db_instance.snyk_db", + "module.storage.aws_db_subnet_group.snyk_rds_subnet_grp", + "module.storage.aws_kms_key.snyk_db_kms_key" + ] + } + ] + }, + { + "module": "module.storage", + "mode": "managed", + "type": "aws_ssm_parameter", + "name": "snyk_ssm_db_user", + "provider": "provider[\"registry.terraform.io/hashicorp/aws\"]", + "instances": [ + { + "schema_version": 0, + "attributes": { + "allowed_pattern": "", + "arn": "arn:aws:ssm:us-east-1:300326902600:parameter/snyk-snyk-demo-eks-w8w5o/DB_USER", + "data_type": "text", + "description": "Snyk Database Username", + "id": "/snyk-snyk-demo-eks-w8w5o/DB_USER", + "key_id": "alias/aws/ssm", + "name": "/snyk-snyk-demo-eks-w8w5o/DB_USER", + "overwrite": null, + "tags": null, + "tags_all": {}, + "tier": "Standard", + "type": "SecureString", + "value": "snyk", + "version": 1 + }, + "sensitive_attributes": [], + "private": "bnVsbA==", + "dependencies": [ + "module.includes.random_string.suffix", + "module.sg.aws_security_group.snyk_rds_sg", + "module.storage.aws_db_instance.snyk_db", + "module.storage.aws_db_subnet_group.snyk_rds_subnet_grp", + "module.storage.aws_kms_key.snyk_db_kms_key" + ] + } + ] + }, + { + "module": "module.subnets", + "mode": "managed", + "type": "aws_subnet", + "name": "main", + "provider": "provider[\"registry.terraform.io/hashicorp/aws\"]", + "instances": [ + { + "schema_version": 1, + "attributes": { + "arn": "arn:aws:ec2:us-east-1:300326902600:subnet/subnet-0f6022b947663313b", + "assign_ipv6_address_on_creation": false, + "availability_zone": "us-east-1a", + "availability_zone_id": "use1-az6", + "cidr_block": "10.0.0.0/24", + "customer_owned_ipv4_pool": "", + "enable_dns64": false, + "enable_resource_name_dns_a_record_on_launch": false, + "enable_resource_name_dns_aaaa_record_on_launch": false, + "id": "subnet-0f6022b947663313b", + "ipv6_cidr_block": "", + "ipv6_cidr_block_association_id": "", + "ipv6_native": false, + "map_customer_owned_ip_on_launch": false, + "map_public_ip_on_launch": false, + "outpost_arn": "", + "owner_id": "300326902600", + "private_dns_hostname_type_on_launch": "ip-name", + "tags": { + "Name": "Main" + }, + "tags_all": { + "Name": "Main" + }, + "timeouts": null, + "vpc_id": "vpc-06a175864b219d14c" + }, + "sensitive_attributes": [], + "private": "eyJlMmJmYjczMC1lY2FhLTExZTYtOGY4OC0zNDM2M2JjN2M0YzAiOnsiY3JlYXRlIjo2MDAwMDAwMDAwMDAsImRlbGV0ZSI6MTIwMDAwMDAwMDAwMH0sInNjaGVtYV92ZXJzaW9uIjoiMSJ9", + "dependencies": [ + "module.includes.module.vpc.aws_vpc.this", + "module.includes.random_string.suffix" + ] + } + ] + }, + { + "module": "module.subnets", + "mode": "managed", + "type": "aws_subnet", + "name": "secondary", + "provider": "provider[\"registry.terraform.io/hashicorp/aws\"]", + "instances": [ + { + "schema_version": 1, + "attributes": { + "arn": "arn:aws:ec2:us-east-1:300326902600:subnet/subnet-0db3088fefa751ce9", + "assign_ipv6_address_on_creation": false, + "availability_zone": "us-east-1c", + "availability_zone_id": "use1-az2", + "cidr_block": "10.0.64.0/19", + "customer_owned_ipv4_pool": "", + "enable_dns64": false, + "enable_resource_name_dns_a_record_on_launch": false, + "enable_resource_name_dns_aaaa_record_on_launch": false, + "id": "subnet-0db3088fefa751ce9", + "ipv6_cidr_block": "", + "ipv6_cidr_block_association_id": "", + "ipv6_native": false, + "map_customer_owned_ip_on_launch": false, + "map_public_ip_on_launch": false, + "outpost_arn": "", + "owner_id": "300326902600", + "private_dns_hostname_type_on_launch": "ip-name", + "tags": { + "Name": "Main" + }, + "tags_all": { + "Name": "Main" + }, + "timeouts": null, + "vpc_id": "vpc-06a175864b219d14c" + }, + "sensitive_attributes": [], + "private": "eyJlMmJmYjczMC1lY2FhLTExZTYtOGY4OC0zNDM2M2JjN2M0YzAiOnsiY3JlYXRlIjo2MDAwMDAwMDAwMDAsImRlbGV0ZSI6MTIwMDAwMDAwMDAwMH0sInNjaGVtYV92ZXJzaW9uIjoiMSJ9", + "dependencies": [ + "module.includes.module.vpc.aws_vpc.this", + "module.includes.random_string.suffix" + ] + } + ] + } + ] +} diff --git a/terraform/modules/includes/main.tf b/terraform/modules/includes/main.tf index 3635b016091..ef071d22b27 100644 --- a/terraform/modules/includes/main.tf +++ b/terraform/modules/includes/main.tf @@ -1,6 +1,7 @@ resource "random_string" "suffix" { - length = 8 + length = 5 special = false + upper = false } locals { diff --git a/terraform/modules/storage/main.tf b/terraform/modules/storage/main.tf index 983f938ce7f..2ded39bbdbe 100644 --- a/terraform/modules/storage/main.tf +++ b/terraform/modules/storage/main.tf @@ -18,7 +18,7 @@ resource "aws_kms_key" "snyk_db_kms_key" { } resource "aws_db_instance" "snyk_db" { - name = "snyk_db_${var.cluster_name}" + name = replace(var.cluster_name,"-","") allocated_storage = 20 engine = "postgres" engine_version = "10.20" @@ -31,7 +31,7 @@ resource "aws_db_instance" "snyk_db" { identifier = "snyk-db-demo" storage_encrypted = true skip_final_snapshot = true - final_snapshot_identifier = "snyk-db-${var.cluster_name}-db-destroy-snapshot" + final_snapshot_identifier = "${var.cluster_name}-db-destroy-snapshot" kms_key_id = aws_kms_key.snyk_db_kms_key.arn tags = { Name = "snyk_db_${var.cluster_name}" @@ -76,14 +76,14 @@ resource "aws_ssm_parameter" "snyk_ssm_db_name" { } resource "aws_s3_bucket" "snyk_storage" { - bucket = "snyk-storage-${var.cluster_name}-demo" + bucket = "${var.cluster_name}" tags = { name = "snyk_blob_storage_${var.cluster_name}" } } resource "aws_s3_bucket" "my-new-undeployed-bucket" { - bucket = "snyk-public-${var.cluster_name}-demo" + bucket = "${var.cluster_name}" } resource "aws_s3_bucket_public_access_block" "snyk_public" {