ADD TCX5 Waiver

Author: geoffcline

latest/ug/attributes.txt

@@ -1,3 +1,5 @@
+:tcx5-waiver: pass:[		 	 	 ]
+
 // eksctl version
 :eksctl-min-version: 0.214.0
 

latest/ug/automode/auto-controls.adoc

@@ -20,9 +20,10 @@ The SCP below prevents calling `ec2:RunInstances` unless the AMI belongs to the
 It's important *not* to use the `ec2:Owner` context key. Amazon owns the EKS Auto Mode AMI accounts and the value for this key will always be `amazon`. Constructing an SCP that allows launching AMIs if the `ec2:Owner` is `amazon` will allow launching any Amazon owned AMI, not just those for EKS Auto Mode.*
 ====
 
-```json
+[source,json,subs="verbatim,attributes"]
+----
 {
-  "Version": "2012-10-17",
+  "Version": "2012-10-17",{tcx5-waiver}
   "Statement": [
     {
       "Sid": "DenyAMI",
@@ -40,7 +41,7 @@ It's important *not* to use the `ec2:Owner` context key. Amazon owns the EKS Aut
     }
   ]
 }
-```
+----
 
 == EKS Auto Mode AMI accounts
 

latest/ug/automode/auto-enable-existing.adoc

@@ -40,10 +40,10 @@ The Cluster IAM role of an EKS Cluster cannot be changed after the cluster is cr
 . From the *Trust relationships* tab, select *Edit trust policy*
 . Insert the following Cluster IAM Role trust policy, and select *Update policy*
 
-[source,json]
+[source,json,subs="verbatim,attributes"]
 ----
 {
-  "Version": "2012-10-17",
+  "Version": "2012-10-17",{tcx5-waiver}
   "Statement": [
     {
       "Effect": "Allow",

latest/ug/automode/auto-kms.adoc

@@ -42,7 +42,7 @@ This policy only includes permissions for EKS Auto Mode. The key policy may need
 [source,json,subs="verbatim,attributes"]
 ----
 {
-    "Version": "2012-10-17",
+    "Version": "2012-10-17",{tcx5-waiver}
     "Id": "MyKeyPolicy",
     "Statement": [
         {

latest/ug/automode/auto-learn-iam.adoc

@@ -86,7 +86,7 @@ By default, the managed policies related to EKS Auto Mode do not permit applying
 [source,json,subs="verbatim,attributes"]
 ----
 {
-    "Version": "2012-10-17",
+    "Version": "2012-10-17",{tcx5-waiver}
     "Statement": [
         {
             "Sid": "Compute",

latest/ug/automode/automode-get-started-cli.adoc

@@ -92,9 +92,10 @@ EKS Auto Mode also requires a Service-Linked Role, which is automatically create
 
 Create a trust policy that allows the Amazon EKS service to assume the role. Save the policy as `trust-policy.json`:
 
-```
+[source,json,subs="verbatim,attributes"]
+----
 {
-  "Version": "2012-10-17",
+  "Version": "2012-10-17",{tcx5-waiver}
   "Statement": [
     {
       "Effect": "Allow", 
@@ -108,7 +109,7 @@ Create a trust policy that allows the Amazon EKS service to assume the role. Sav
     }
   ]
 }
-```
+----
 
 === Step 2: Create the IAM Role
 
@@ -183,9 +184,10 @@ aws iam attach-role-policy \
 
 Create a trust policy that allows the Amazon EKS service to assume the role. Save the policy as `node-trust-policy.json`:
 
-```
+[source,json,subs="verbatim,attributes"]
+----
 {
-  "Version": "2012-10-17",
+  "Version": "2012-10-17",{tcx5-waiver}
   "Statement": [
     {
       "Effect": "Allow",
@@ -196,7 +198,8 @@ Create a trust policy that allows the Amazon EKS service to assume the role. Sav
     }
   ]
 }
-```
+----[source,json,subs="verbatim,attributes"]
+----
 
 ==== Step 2: Create the Node IAM Role
 

latest/ug/automode/create-storage-class.adoc

@@ -72,7 +72,7 @@ Update the following values in the policy below:
 [source,json,subs="verbatim,attributes"]
 ----
 {
-  "Version": "2012-10-17",
+  "Version": "2012-10-17",{tcx5-waiver}
   "Id": "key-auto-policy-3",
   "Statement": [
       {

latest/ug/clusters/create-cluster-auto.adoc

@@ -126,9 +126,10 @@ The following CLI instructions cover creating IAM resources and creating the clu
 
 Create a trust policy that allows the Amazon EKS service to assume the role. Save the policy as `trust-policy.json`:
 
-```
+[source,json,subs="verbatim,attributes"]
+----
 {
-  "Version": "2012-10-17",
+  "Version": "2012-10-17",{tcx5-waiver}
   "Statement": [
     {
       "Effect": "Allow", 
@@ -142,7 +143,7 @@ Create a trust policy that allows the Amazon EKS service to assume the role. Sav
     }
   ]
 }
-```
+----
 
 ==== Step 2: Create the IAM Role
 
@@ -217,9 +218,10 @@ aws iam attach-role-policy \
 
 Create a trust policy that allows the Amazon EKS service to assume the role. Save the policy as `node-trust-policy.json`:
 
-```
+[source,json,subs="verbatim,attributes"]
+----
 {
-  "Version": "2012-10-17",
+  "Version": "2012-10-17",{tcx5-waiver}
   "Statement": [
     {
       "Effect": "Allow",
@@ -230,7 +232,7 @@ Create a trust policy that allows the Amazon EKS service to assume the role. Sav
     }
   ]
 }
-```
+----
 
 ==== Step 2: Create the Node IAM Role
 

latest/ug/clusters/create-cluster.adoc

@@ -39,7 +39,7 @@ This topic provides an overview of the available options and describes what to c
 ----
 cat >eks-cluster-role-trust-policy.json <<EOF
 {
-  "Version": "2012-10-17",
+  "Version": "2012-10-17",{tcx5-waiver}
   "Statement": [
     {
       "Effect": "Allow",

latest/ug/getting-started/getting-started-console.adoc

@@ -70,7 +70,7 @@ TIP: For a list of all the resources the previous command creates, open the {aws
 [source,json,subs="verbatim,attributes"]
 ----
 {
-  "Version": "2012-10-17",
+  "Version": "2012-10-17",{tcx5-waiver}
   "Statement": [
     {
       "Effect": "Allow",
@@ -184,7 +184,7 @@ To learn more about different ways to configure nodes in EKS, see <<eks-compute>
 [source,json,subs="verbatim,attributes"]
 ----
 {
-  "Version": "2012-10-17",
+  "Version": "2012-10-17",{tcx5-waiver}
   "Statement": [
     {
       "Effect": "Allow",