From e5cff842835f2bdede53db843c2b37b3d3534332 Mon Sep 17 00:00:00 2001
From: Kamontat Chantrachirathumrong
 <14089557+kamontat@users.noreply.github.com>
Date: Tue, 26 Aug 2025 01:21:39 +0700
Subject: [PATCH] fix: Ensure module created security group is included on any
 network interfaces created (#3493)

* fix(module): wrong variable name in eks-managed-node-group

* Update modules/eks-managed-node-group/main.tf

---------

Co-authored-by: Bryant Biggs <bryantbiggs@gmail.com>
---
 modules/eks-managed-node-group/main.tf | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/modules/eks-managed-node-group/main.tf b/modules/eks-managed-node-group/main.tf
index 85d75efe..fa940c51 100644
--- a/modules/eks-managed-node-group/main.tf
+++ b/modules/eks-managed-node-group/main.tf
@@ -315,7 +315,7 @@ resource "aws_launch_template" "this" {
       primary_ipv6         = network_interfaces.value.primary_ipv6
       private_ip_address   = network_interfaces.value.private_ip_address
       # Ref: https://github.com/hashicorp/terraform-provider-aws/issues/4570
-      security_groups = compact(concat(network_interfaces.value.security_groups, var.vpc_security_group_ids))
+      security_groups = compact(concat(network_interfaces.value.security_groups, local.security_group_ids))
       # Set on EKS managed node group, will fail if set here
       # https://docs.aws.amazon.com/eks/latest/userguide/launch-templates.html#launch-template-basics
       # subnet_id       = try(network_interfaces.value.subnet_id, null)