fix

Author: karimzakzouk

Terraform/modules/eks/main.tf

@@ -203,6 +203,7 @@ resource "aws_sqs_queue" "karpenter_interruption" {
 resource "aws_iam_service_linked_role" "spot" {
   aws_service_name = "spot.amazonaws.com"
   description      = "Service-linked role for EC2 Spot Instances used by Karpenter"
+  custom_suffix    = "karpenter"
 
   lifecycle {
     prevent_destroy = true

backend/main.tf

@@ -146,6 +146,11 @@ resource "aws_iam_role_policy" "github_actions_infra_policy" {
           "iam:TagRole",
           "iam:UntagRole",
           "iam:ListRoleTags",
+          
+          # Service Linked Role permissions (ADDED - this was missing!)
+          "iam:CreateServiceLinkedRole",
+          "iam:DeleteServiceLinkedRole",
+          "iam:GetServiceLinkedRoleDeletionStatus",
 
           # Additional permissions for EKS
           "autoscaling:*",
@@ -176,4 +181,4 @@ resource "aws_iam_role_policy" "github_actions_infra_policy" {
       }
     ]
   })
-}
+}