lambda vpc subnets and security groups configuration added

Author: lukaspour

main.tf

@@ -56,6 +56,10 @@ module "ecr-scan-trigger-lambda" {
   handler = "lambda_function.lambda_handler"
   runtime = "python3.6"
 
+  subnet_ids = var.subnet_ids
+  security_group_ids = var.security_group_ids
+
+
   tags = merge(
     var.tags,
     map("Name", var.global_name),
@@ -75,6 +79,9 @@ module "ecr-scan-notify-lambda" {
   handler = "lambda_function.lambda_handler"
   runtime = "python3.6"
 
+  subnet_ids = var.subnet_ids
+  security_group_ids = var.security_group_ids
+
   environment = {
     SLACK_CHANNEL     = var.slack_channel
     SLACK_USERNAME    = var.slack_username

variables.tf

@@ -55,3 +55,16 @@ variable "risk_levels" {
   type        = string
   default    = "HIGH, CRITICAL"
 }
+
+variable "subnet_ids" {
+  description = "VPC subnets for Lambda"
+  type        = list(string)
+  default     = []
+}
+
+variable "security_group_ids" {
+  description = "SG IDs for Lambda, should at least allow all outbound"
+  type        = list(string)
+  default     = []
+}
+