From 3c8f0f8a34a84b5c30680f7fe1f5d51fb19d0cf2 Mon Sep 17 00:00:00 2001
From: Matt Holmes <mholmes01@protonmail.com>
Date: Fri, 7 Mar 2025 11:39:01 +0000
Subject: [PATCH] feat: Update AllowScopedEC2InstanceAccessActions policy to
 include capacity-reservation permission as part of Karpenter version 1.3.0

---
 modules/karpenter/policy.tf | 1 +
 1 file changed, 1 insertion(+)

diff --git a/modules/karpenter/policy.tf b/modules/karpenter/policy.tf
index 7fb04e47b2..26c0b235c0 100644
--- a/modules/karpenter/policy.tf
+++ b/modules/karpenter/policy.tf
@@ -361,6 +361,7 @@ data "aws_iam_policy_document" "v1" {
       "arn:${local.partition}:ec2:${local.region}::snapshot/*",
       "arn:${local.partition}:ec2:${local.region}:*:security-group/*",
       "arn:${local.partition}:ec2:${local.region}:*:subnet/*",
+      "arn:${local.partition}:ec2:${local.region}:*:capacity-reservation/*",
     ]
 
     actions = [