terraform-aws-eks-workers

🤖 Automatic Updates

This PR contains the following updates:

Package	Type	Update	Change
cloudposse/ec2-autoscale-group/aws (source)	module	minor	0.39.0 -> 0.40.0

---

Release Notes

v0.40.0

Compare Source

why

var.tags does not provide any tags if you rely on context:

module {
  ...
  context = module.this.context
}

🤖 Automatic Updates

what

• Update .github/settings.yml
• Drop .github/auto-release.yml files

why

• Re-apply .github/settings.yml from org level
• Use organization level auto-release settings

references

• DEV-1242 Add protected tags with Repository Rulesets on GitHub

what

• Update .github/settings.yml
• Drop .github/auto-release.yml files

why

• Re-apply .github/settings.yml from org level
• Use organization level auto-release settings

references

• DEV-1242 Add protected tags with Repository Rulesets on GitHub

what

• Update workflow (.github/workflows/release.yaml) to have permission to comment on PR

why

• So we can support commenting on PRs with a link to the release

what

• Update workflows (.github/workflows) to use shared workflows from .github repo

why

• Reduce nested levels of reusable workflows

Package	Type	Update	Change
cloudposse/dynamic-subnets/aws (source)	module	patch	2.4.1 -> 2.4.2

---

Release Notes

v2.4.2

Compare Source

🚀 Enhancements

This PR contains the following updates:

Package	Type	Update	Change
cloudposse/utils/aws (source)	module	minor	1.3.0 -> 1.4.0

---

Release Notes

v1.4.0

Compare Source

what

Add new Tel Aviv (il-central-1) region

why

Provide full coverage

references

Rebuild github dir from the template

---

🤖 Automatic Updates

This PR contains the following updates:

Package	Type	Update	Change
cloudposse/utils/aws (source)	module	minor	1.3.0 -> 1.4.0

---

Release Notes

v1.4.0

Compare Source

what

Add new Tel Aviv (il-central-1) region

why

Provide full coverage

references

Rebuild github dir from the template

---

what

This is an auto-generated PR that updates the README.md and docs

why

To have most recent changes of README.md and doc from origin templates

---

what

• Update workflows (.github/workflows) to add issue: write permission needed by ReviewDog tflint action

why

• The ReviewDog action will comment with line-level suggestions based on linting failures

what

• Update workflows (.github/workflows/settings.yaml)

why

• Support new readme generation workflow.
• Generate banners

what

• Install latest GitHub Action Workflows

why

• Use shared workflows from cldouposse/.github repository
• Simplify management of workflows from centralized hub of configuration

what

• Install a repository config (.github/settings.yaml)

why

• Programmatically manage GitHub repo settings

what

This is an auto-generated PR that updates the README.md and docs

why

To have most recent changes of README.md and doc from origin templates

what

• Reran make readme to rebuild README.md from README.yaml
• Migrate to square badges
• Add scaffolding for repo settings and Mergify

why

• Upstream template changed in the .github repo
• Work better with repository rulesets
• Modernize look & feel

Package	Type	Update	Change
cloudposse/vpc/aws (source)	module	minor	2.1.1 -> 2.2.0

---

Release Notes

v2.2.0

Compare Source

---

what

This is an auto-generated PR that updates the README.md and docs

why

To have most recent changes of README.md and doc from origin templates

Package	Type	Update	Change
cloudposse/vpc/aws (source)	module	patch	2.1.0 -> 2.1.1

---

Release Notes

v2.1.1

Compare Source

what

This PR adds support for Network Address Usage Metrics on the VPC.
AWS documentation : https://docs.aws.amazon.com/vpc/latest/userguide/network-address-usage.html
Terraform documentation : https://registry.terraform.io/providers/hashicorp/aws/latest/docs/resources/vpc#enable_network_address_usage_metrics

why

Network Address Usage metrics can help monitor the growth of a VPC and would be useful for any user.
Enable this after creating a VPC does not trigger recreation of the VPC.

references

closes #​115

Rebuild github dir from the template

🤖 Automatic Updates

what

This is an auto-generated PR that updates the README.md and docs

why

To have most recent changes of README.md and doc from origin templates

---

---

Configuration

📅 Schedule: Branch creation - At any time (no schedule defined), Automerge - At any time (no schedule defined).

🚦 Automerge: Disabled by config. Please merge this manually once you are satisfied.

♻ Rebasing: Whenever PR becomes conflicted, or you tick the rebase/retry checkbox.

🔕 Ignore: Close this PR and you won't be reminded about this update again.

---

• If you want to rebase/retry this PR, check this box

---

This PR was generated by Mend Renovate. View the repository job log.

Bumps the go_modules group in /test/src with 4 updates: github.com/hashicorp/go-getter, golang.org/x/crypto, golang.org/x/net and google.golang.org/protobuf.

Updates github.com/hashicorp/go-getter from 1.7.1 to 1.7.5

Updates golang.org/x/crypto from 0.14.0 to 0.17.0

Updates golang.org/x/net from 0.17.0 to 0.23.0

Updates google.golang.org/protobuf from 1.31.0 to 1.33.0

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
• @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
• @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
• @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
• @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions
  You can disable automated security fix PRs for this repo from the Security Alerts page.

what

• Update workflow (.github/workflows/release.yaml) to have permission to comment on PR

why

• So we can support commenting on PRs with a link to the release

what

• Update workflows (.github/workflows) to use shared workflows from .github repo

why

• Reduce nested levels of reusable workflows

what

• Update workflows (.github/workflows) to add issue: write permission needed by ReviewDog tflint action

why

• The ReviewDog action will comment with line-level suggestions based on linting failures

what

• Update workflows (.github/workflows/settings.yaml)

why

• Support new readme generation workflow.
• Generate banners

what

• Install latest GitHub Action Workflows

why

• Use shared workflows from cldouposse/.github repository
• Simplify management of workflows from centralized hub of configuration

what

• Install a repository config (.github/settings.yaml)

why

• Programmatically manage GitHub repo settings

what

This is an auto-generated PR that updates the README.md and docs

why

To have most recent changes of README.md and doc from origin templates

what

• Reran make readme to rebuild README.md from README.yaml
• Migrate to square badges
• Add scaffolding for repo settings and Mergify

why

• Upstream template changed in the .github repo
• Work better with repository rulesets
• Modernize look & feel

What's Changed

• chore(deps): update terraform cloudposse/label/null to v0.25.0 (release/v0) by @renovate in https://github.com/cloudposse/terraform-aws-eks-workers/pull/108

what

• Update this module and its dependencies to remove the need for the template, local, and null providers.
• Update this module and its dependencies to use null-label v0.25
• Drop support for Terraform v0.12

why

• Support Terraform on Apple CPUs
• Bring up to current standards without making significant changes that could cause problems when upgrading

Full Changelog: https://github.com/cloudposse/terraform-aws-eks-workers/compare/0.18.4...0.21.0

🤖 Automatic Updates

This PR contains the following updates:

Package	Type	Update	Change
cloudposse/ec2-autoscale-group/aws (source)	module	minor	0.37.1 -> 0.39.0

---

Release Notes

v0.39.0

Compare Source

what

• change variable field of mixed_instances_policy to optional

why

In my other PR for terraform ECS component I changed the default value of variable that is being passed here. Without this change terraform will complain that there is no such field as instances_distribution/override

references

• https://github.com/cloudposse/terraform-aws-ecs-cluster/pull/25

NOTE: This PR must be merged first and then I will change version of ASG component in ECS component

v0.38.0

Compare Source

🚀 Enhancements

what

• Add optional network_interface_id variable to launch_template

why

• Allow the attaching of existing network interfaces

references

• https://registry.terraform.io/providers/hashicorp/aws/latest/docs/resources/launch_template#network_interface_id

v0.37.2

Compare Source

🚀 Enhancements

what

Version v0.36.0 does not work with AWS Provider 4.X.

why

In PR #​121 of v0.36.0, the preference key scale_in_protected_instances, which had been available only since AWS Provider 5.16.0 introduced by PR#33310, was added. That basically upgrades the required AWS provider version to 5.16.0+.
We will get errors like the below while planning with AWS provider <5.16.0:

│ Error: Unsupported argument
│
│   on .terraform/modules/autoscale_group/main.tf line 187, in resource "aws_autoscaling_group" "default":
│  187:           scale_in_protected_instances = lookup(preferences.value, "scale_in_protected_instances", null)
│
│ An argument named "scale_in_protected_instances" is not expected here.

references

• https://github.com/cloudposse/terraform-aws-ec2-autoscale-group/pull/121
• https://github.com/hashicorp/terraform-provider-aws/pull/33310

🐛 Bug Fixes

what

Version v0.36.0 does not work with AWS Provider 4.X.

why

In PR #​121 of v0.36.0, the preference key scale_in_protected_instances, which had been available only since AWS Provider 5.16.0 introduced by PR#33310, was added. That basically upgrades the required AWS provider version to 5.16.0+.
We will get errors like the below while planning with AWS provider <5.16.0:

│ Error: Unsupported argument
│
│   on .terraform/modules/autoscale_group/main.tf line 187, in resource "aws_autoscaling_group" "default":
│  187:           scale_in_protected_instances = lookup(preferences.value, "scale_in_protected_instances", null)
│
│ An argument named "scale_in_protected_instances" is not expected here.

references

• https://github.com/cloudposse/terraform-aws-ec2-autoscale-group/pull/121
• https://github.com/hashicorp/terraform-provider-aws/pull/33310

---

This would be the v1.0.0 release except we accidentally published that previously.

We do not expect breaking changes, but there have been a lot of updates to support the current version of the AWS Terraform provider (v5), so some caution is warranted when upgrading.

what

• Support AWS Provider v5
• Linter fixes
• Update dependencies

why

• Support AWS Provider v5

references

• https://github.com/hashicorp/terraform-provider-aws/releases/tag/v5.0.0
• Supersedes and closes #96
• Supersedes and closes #100
• Supersedes and closes #103

Unfortunately, v1.0.0 was released by mistake. Current recommended version is v0.18.4, or you can try v1.0.0-rc2. Either way, expect breaking changes in the next release.

What's Changed

• Support other AWS partitions other than Commercial by @RothAndrew in https://github.com/cloudposse/terraform-aws-eks-workers/pull/93

New Contributors

• @RothAndrew made their first contribution in https://github.com/cloudposse/terraform-aws-eks-workers/pull/93

Full Changelog: https://github.com/cloudposse/terraform-aws-eks-workers/compare/1.0.0-rc1...1.0.0-rc2

what

• Replace deprecated data template_file with templatefile function

why

• Users of arm architecture computers cannot use deprecated template provider

references

• closes #87

what

• Replaces 1-9 with 0-9 in ami regex

why

• This enables the ami data source to retrieve the correct ami for kube 1.20

references

• Closes #71

what

• Revert main to v0.18.4

why

• PR #73 converted this module to use an experimental and since abandoned version of the security group module. This was published as version 0.19.0. 0.18.4 was the last version published before that modification, and the last supported version. This PR reverts the master branch to version 0.18.4 in preparation for providing a compatible version 1.0 of this module using security group module v2.0.

🚀 Enhancements

what

• add max_instance_lifetime

why

From #70

Having this would be helpful as a backstop for the in-cluster node replacement options with cluster-autoscaler / node-problem-detector / Draino to ensure that a node is replaced even if all else fails.

references

• Closes #70

🤖 Automatic Updates

what

• Update null-label and context.tf to v0.25.0

Unstable pre-release. See release notes for v0.19.0 for more details.

what

• Allow the use of a permissions boundary on the default role

why

• In our organisation, permissions boundaries are a requirement for all engineers to provide to roles. Allowing them to be attached to the default roles allows us to create node groups without creating our own roles and policies.

• The change is entirely optional and non-breaking.

references

• The eks_cluster module you provide also allows this.

🤖 Automatic Updates

what

This is an auto-generated PR that updates the context.tf file to the latest version from cloudposse/terraform-null-label

why

To support all the features of the context interface.

🤖 Automatic Updates

This PR contains the following updates:

Package	Type	Update	Change
cloudposse/security-group/aws (source)	module	patch	0.3.2 -> 0.3.3

---

Release Notes

v0.3.3

Compare Source

🤖 Automatic Updates

---

Configuration

📅 Schedule: At any time (no schedule defined).

🚦 Automerge: Disabled by config. Please merge this manually once you are satisfied.

♻ Rebasing: Renovate will not automatically rebase this PR, because other commits have been found.

🔕 Ignore: Close this PR and you won't be reminded about this update again.

---

• If you want to rebase/retry this PR, check this box.

---

This PR has been generated by WhiteSource Renovate. View repository job log here.

🤖 Automatic Updates

This PR contains the following updates:

Package	Type	Update	Change
cloudposse/label/null (source)	module	minor	0.24.1 -> 0.25.0

---

Release Notes

v0.25.0

Compare Source

---

Configuration

📅 Schedule: At any time (no schedule defined).

🚦 Automerge: Disabled by config. Please merge this manually once you are satisfied.

♻ Rebasing: Renovate will not automatically rebase this PR, because other commits have been found.

🔕 Ignore: Close this PR and you won't be reminded about this update again.

---

• If you want to rebase/retry this PR, check this box.

---

This PR has been generated by WhiteSource Renovate. View repository job log here.

🤖 Automatic Updates

This PR contains the following updates:

Package	Type	Update	Change
cloudposse/security-group/aws (source)	module	patch	0.3.1 -> 0.3.2

---

Release Notes

v0.3.2

Compare Source

🚀 Enhancements

---

Configuration

📅 Schedule: At any time (no schedule defined).

🚦 Automerge: Disabled by config. Please merge this manually once you are satisfied.

♻ Rebasing: Renovate will not automatically rebase this PR, because other commits have been found.

🔕 Ignore: Close this PR and you won't be reminded about this update again.

---

• If you want to rebase/retry this PR, check this box.

---

This PR has been generated by WhiteSource Renovate. View repository job log here.

🤖 Automatic Updates

This PR contains the following updates:

Package	Type	Update	Change
cloudposse/ec2-autoscale-group/aws (source)	module	minor	0.26.0 -> 0.27.0

---

Release Notes

v0.27.0

Compare Source

---

Configuration

📅 Schedule: At any time (no schedule defined).

🚦 Automerge: Disabled by config. Please merge this manually once you are satisfied.

♻ Rebasing: Renovate will not automatically rebase this PR, because other commits have been found.

🔕 Ignore: Close this PR and you won't be reminded about this update again.

---

• If you want to rebase/retry this PR, check this box.

---

This PR has been generated by WhiteSource Renovate. View repository job log here.

🤖 Automatic Updates

This PR contains the following updates:

Package	Type	Update	Change
cloudposse/ec2-autoscale-group/aws (source)	module	minor	0.25.0 -> 0.26.0

---

Release Notes

v0.26.0

Compare Source

All inputs have to be provided e.g.

This works

  warm_pool = {
    pool_state                  = "Running"
    min_size                    = 1
    max_group_prepared_capacity = null
  }

This fails

  warm_pool = {
    pool_state                  = "Running"
    min_size                    = 1
  }

The only way around this is to use the optional() variable feature which is still experimental.

---

Configuration

📅 Schedule: At any time (no schedule defined).

🚦 Automerge: Disabled by config. Please merge this manually once you are satisfied.

♻ Rebasing: Renovate will not automatically rebase this PR, because other commits have been found.

🔕 Ignore: Close this PR and you won't be reminded about this update again.

---

• If you want to rebase/retry this PR, check this box.

---

This PR has been generated by WhiteSource Renovate. View repository job log here.

We are revising and standardizing our handling of security groups and security group rules across all our Terraform modules. This is an early attempt with significant breaking changes. We will make further breaking changes soon, so using this version is not recommended.

what

• use security-group module instead of resource
• update tests

why

• more flexible than current implementation
• bring configuration of security group/rules to one standard

references

• CPCO-409

🤖 Automatic Updates

This PR contains the following updates:

Package	Type	Update	Change
cloudposse/ec2-autoscale-group/aws (source)	module	minor	0.24.1 -> 0.25.0

---

Release Notes

v0.25.0

Compare Source

---

Configuration

📅 Schedule: At any time (no schedule defined).

🚦 Automerge: Disabled by config. Please merge this manually once you are satisfied.

♻️ Rebasing: Renovate will not automatically rebase this PR, because other commits have been found.

🔕 Ignore: Close this PR and you won't be reminded about this update again.

---

• If you want to rebase/retry this PR, check this box.

---

This PR has been generated by WhiteSource Renovate. View repository job log here.

🤖 Automatic Updates

This PR contains the following updates:

Package	Type	Update	Change
cloudposse/ec2-autoscale-group/aws (source)	module	patch	0.24.0 -> 0.24.1

---

Release Notes

v0.24.1

Compare Source

🐛 Bug Fixes

---

Configuration

📅 Schedule: At any time (no schedule defined).

🚦 Automerge: Disabled by config. Please merge this manually once you are satisfied.

♻️ Rebasing: Renovate will not automatically rebase this PR, because other commits have been found.

🔕 Ignore: Close this PR and you won't be reminded about this update again.

---

• If you want to rebase/retry this PR, check this box.

---

This PR has been generated by WhiteSource Renovate. View repository job log here.

🤖 Automatic Updates

This PR contains the following updates:

Package	Type	Update	Change
cloudposse/ec2-autoscale-group/aws (source)	module	minor	0.23.1 -> 0.24.0

---

Release Notes

v0.24.0

Compare Source

---

Configuration

📅 Schedule: At any time (no schedule defined).

🚦 Automerge: Disabled by config. Please merge this manually once you are satisfied.

♻️ Rebasing: Renovate will not automatically rebase this PR, because other commits have been found.

🔕 Ignore: Close this PR and you won't be reminded about this update again.

---

• If you want to rebase/retry this PR, check this box.

---

This PR has been generated by WhiteSource Renovate. View repository job log here.

Closes #66

🤖 Automatic Updates

This PR contains the following updates:

Package	Type	Update	Change
cloudposse/ec2-autoscale-group/aws (source)	terraform	patch	0.23.0 -> 0.23.1

---

Release Notes

v0.23.1

Compare Source

🐛 Bug Fixes

---

Configuration

📅 Schedule: At any time (no schedule defined).

🚦 Automerge: Disabled by config. Please merge this manually once you are satisfied.

♻️ Rebasing: Renovate will not automatically rebase this PR, because other commits have been found.

🔕 Ignore: Close this PR and you won't be reminded about this update again.

---

• If you want to rebase/retry this PR, check this box.

---

This PR has been generated by WhiteSource Renovate. View repository job log here.

what

• Expose settings for AWS Instance Metadata Service
• Fix Autoscaling Group tags
• Added tests for ASG name and tags

why

• Default to more secure options
• PR #63 added the required Kubernetes tag but set the wrong value for some other tags
• Prevent regression

references

• AWS documentation: Configure the Instance metadata service
• Closes #64