github.com/aquasecurity/trivy-iac@v0.8.1-0.20240127024015-3d8e412cf0ab/avd_docs/aws/eks/AVD-AWS-0039/Terraform.md (about) 1 2 Enable encryption of EKS secrets 3 4 ```hcl 5 resource "aws_eks_cluster" "good_example" { 6 encryption_config { 7 resources = [ "secrets" ] 8 provider { 9 key_arn = var.kms_arn 10 } 11 } 12 13 name = "good_example_cluster" 14 role_arn = var.cluster_arn 15 vpc_config { 16 endpoint_public_access = false 17 } 18 } 19 20 ``` 21 22 #### Remediation Links 23 - https://registry.terraform.io/providers/hashicorp/aws/latest/docs/resources/eks_cluster#encryption_config 24