diff --git a/README.md b/README.md
index 114072b..52310fc 100644
--- a/README.md
+++ b/README.md
@@ -1,2 +1,3 @@
 # codegoat
 Sample repo of errors, misconfigurations, and vulnerabilities for Bridgecrew and Prisma Cloud Code Security
+new change
diff --git a/newfile.tf b/newfile.tf
new file mode 100644
index 0000000..a3f02d6
--- /dev/null
+++ b/newfile.tf
@@ -0,0 +1,31 @@
+resource "aws_ecs_task_definition" "service" {
+  family = "service"
+  container_definitions = jsonencode([
+    {
+      name      = "first"
+      image     = "nginx"
+      cpu       = 10
+      memory    = 512
+      essential = true
+      portMappings = [
+        {
+          containerPort = 80
+          hostPort      = 80
+        }
+      ]
+    },
+    {
+      name      = "second"
+      image     = "python:3.9-alpine"
+      cpu       = 10
+      memory    = 256
+      essential = true
+      portMappings = [
+        {
+          containerPort = 443
+          hostPort      = 443
+        }
+      ]
+    }
+  ])
+}
diff --git a/sca-image/Dockerfile b/sca-image/Dockerfile
index ca4cce8..fa9e8b8 100644
--- a/sca-image/Dockerfile
+++ b/sca-image/Dockerfile
@@ -4,5 +4,5 @@ RUN groupadd -r johnnycodev && useradd -r -s /bin/false -g johnnycodev johnnycod
 WORKDIR /app
 COPY . /app
 RUN chown -R johnnycodev:johnnycodev /app
-USER johnnycodev
-CMD node index.js
+USER johnnycodevsasdf
+CMD node index.js
\ No newline at end of file
diff --git a/sca-package/requirements.txt b/sca-package/requirements.txt
index 557fbc0..4f8c2ea 100644
--- a/sca-package/requirements.txt
+++ b/sca-package/requirements.txt
@@ -1,3 +1,3 @@
 django==1.2
-flask==0.6
+flask==0.12.3
 requests==2.26.0
diff --git a/secrets/app.js b/secrets/app.js
index 68d0341..d75846a 100644
--- a/secrets/app.js
+++ b/secrets/app.js
@@ -1,3 +1,4 @@
 const SEC_1 = "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"
+const SEC_3 = "dsapi45202d12abdce73c004a9e0be24a21b2"
 const SEC_2 = "eyJrIjoiNUwyZU7TMmRxQXNVcnR7UXB0ME4zYkhRaTk2STVhR0MiLCJuIjoidGVtcCIsImlkIjoxfQ=="
-const SEC_3 = "dsapi45202d12abdce73c004a9e0be24a21b2"
\ No newline at end of file
+const SEC_3 = "dsapi45202d12abdce73c004a9e0be24a21b2"
diff --git a/terraform/README b/terraform/README
new file mode 100644
index 0000000..2127861
--- /dev/null
+++ b/terraform/README
@@ -0,0 +1 @@
+new readme change
diff --git a/terraform/ecs.tf b/terraform/ecs.tf
index a3f02d6..cba65c3 100644
--- a/terraform/ecs.tf
+++ b/terraform/ecs.tf
@@ -29,3 +29,4 @@ resource "aws_ecs_task_definition" "service" {
     }
   ])
 }
+`
\ No newline at end of file
diff --git a/terraform/main.tf b/terraform/main.tf
index 9fc7c4d..76cf7f7 100644
--- a/terraform/main.tf
+++ b/terraform/main.tf
@@ -69,4 +69,5 @@ module "instance" {
 resource "aws_ebs_volume" "i" {
   availability_zone = "${var.region}a"
   size              = 40
+  encrypted = true
 }
\ No newline at end of file
diff --git a/terraform/s3.tf b/terraform/s3.tf
new file mode 100644
index 0000000..37c78ff
--- /dev/null
+++ b/terraform/s3.tf
@@ -0,0 +1,33 @@
+resource "aws_ecs_task_definition" "service" {
+  family = "service"
+  container_definitions = jsonencode([
+    {
+      name      = "first"
+      image     = "nginx"
+      cpu       = 10
+      memory    = 512
+      essential = true
+      portMappings = [
+        {
+          containerPort = 80
+          hostPort      = 80
+        }
+      ]
+    },
+    {
+      name      = "second"
+      image     = "python:3.9-alpine"
+      cpu       = 10
+      memory    = 256
+      essential = true
+      portMappings = [
+        {
+          containerPort = 443
+          hostPort      = 443
+        }
+      ]
+    }
+  ])
+}
+`
+