From 5fd8d8b381f21b98bf2e02cb120546da2b78aafb Mon Sep 17 00:00:00 2001
From: vitalii v v <87434848+vitaliimd@users.noreply.github.com>
Date: Thu, 16 Mar 2023 23:40:58 +0600
Subject: [PATCH 1/2] change network policy

---
 terraform/layer2-k8s/eks-external-secrets.tf | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/terraform/layer2-k8s/eks-external-secrets.tf b/terraform/layer2-k8s/eks-external-secrets.tf
index 8b11085e..3ea2085f 100644
--- a/terraform/layer2-k8s/eks-external-secrets.tf
+++ b/terraform/layer2-k8s/eks-external-secrets.tf
@@ -107,7 +107,7 @@ module "external_secrets_namespace" {
       ingress = {
         ports = [
           {
-            port     = "9443"
+            port     = "10250"
             protocol = "TCP"
           }
         ]

From 5961885d119f813cadab743d158a10017a1ce84d Mon Sep 17 00:00:00 2001
From: vitalii v v <87434848+vitaliimd@users.noreply.github.com>
Date: Tue, 21 Mar 2023 12:04:42 +0600
Subject: [PATCH 2/2] feature/320-fix tfsec

---
 terraform/layer1-aws/aws-vpc.tf | 1 +
 1 file changed, 1 insertion(+)

diff --git a/terraform/layer1-aws/aws-vpc.tf b/terraform/layer1-aws/aws-vpc.tf
index 2b41fa1f..f232d660 100644
--- a/terraform/layer1-aws/aws-vpc.tf
+++ b/terraform/layer1-aws/aws-vpc.tf
@@ -14,6 +14,7 @@ data "aws_security_group" "default" {
 }
 
 #tfsec:ignore:aws-ec2-no-public-ip-subnet
+#tfsec:ignore:aws-ec2-require-vpc-flow-logs-for-all-vpcs
 module "vpc" {
   source  = "terraform-aws-modules/vpc/aws"
   version = "3.12.0"