fix: Added tfsec ignore

clouddrove · Aug 10, 2023 · 3ea65e5 · 3ea65e5
1 parent 10c3a9b
commit 3ea65e5
Show file tree

Hide file tree

Showing 2 changed files with 4 additions and 4 deletions.
diff --git a/main.tf b/main.tf
@@ -1,8 +1,6 @@
 
 #Module      : label
 #Description : Terraform module to create consistent naming for multiple names.
-#tfsec:ignore:aws-eks-no-public-cluster-access  ## To provide eks endpoint public access from local network
-#tfsec:ignore:aws-eks-no-public-cluster-access-to-cidr ## To provide eks endpoint public access from local network 
 
 module "labels" {
   source  = "clouddrove/labels/aws"
@@ -26,7 +24,8 @@ resource "aws_cloudwatch_log_group" "default" {
   kms_key_id        = join("", aws_kms_key.cloudwatch_log.*.arn)
 }
 
-
+#tfsec:ignore:aws-eks-no-public-cluster-access  ## To provide eks endpoint public access from local network
+#tfsec:ignore:aws-eks-no-public-cluster-access-to-cidr ## To provide eks endpoint public access from local network 
 resource "aws_eks_cluster" "default" {
   count                     = var.enabled ? 1 : 0
   name                      = module.labels.id

diff --git a/security_groups.tf b/security_groups.tf
@@ -1,6 +1,5 @@
 #Module      : SECURITY GROUP
 #Description : Provides a security group resource.
-#tfsec:ignore:aws-ec2-no-public-egress-sgr ## To allow all outbound traffic from eks nodes.
 
 resource "aws_security_group" "node_group" {
   count       = var.enabled ? 1 : 0
@@ -13,6 +12,8 @@ resource "aws_security_group" "node_group" {
 #Module      : SECURITY GROUP RULE EGRESS
 #Description : Provides a security group rule resource. Represents a single egress group rule,
 #              which can be added to external Security Groups.
+
+#tfsec:ignore:aws-ec2-no-public-egress-sgr ## To allow all outbound traffic from eks nodes.
 resource "aws_security_group_rule" "node_group" {
   count             = var.enabled ? 1 : 0
   description       = "Allow all egress traffic"