From 312ddb68f408ef045a03d3673f5dabeeed5b5cf0 Mon Sep 17 00:00:00 2001
From: Erez Zarum <erezzarum@users.noreply.github.com>
Date: Mon, 13 Apr 2026 18:44:39 +0300
Subject: [PATCH] feat: Update Karpenter sub-module to support Karpenter
 `v1.11` (#3674)

Update karpenter module to support Karpenter v1.11

Signed-off-by: Erez Zarum <erezz@amazon.com>
---
 modules/karpenter/main.tf   | 8 ++++++++
 modules/karpenter/policy.tf | 4 +++-
 2 files changed, 11 insertions(+), 1 deletion(-)

diff --git a/modules/karpenter/main.tf b/modules/karpenter/main.tf
index af0e947..c5a299c 100644
--- a/modules/karpenter/main.tf
+++ b/modules/karpenter/main.tf
@@ -274,6 +274,14 @@ locals {
         detail-type = ["EC2 Instance State-change Notification"]
       }
     }
+    capacity_reservation_interruption = {
+      name        = "CRInterruption"
+      description = "Karpenter interrupt - EC2 capacity reservation instance interruption warning"
+      event_pattern = {
+        source      = ["aws.ec2"]
+        detail-type = ["EC2 Capacity Reservation Instance Interruption Warning"]
+      }
+    }
   }
 }
 
diff --git a/modules/karpenter/policy.tf b/modules/karpenter/policy.tf
index 34937f3..36f95de 100644
--- a/modules/karpenter/policy.tf
+++ b/modules/karpenter/policy.tf
@@ -9,6 +9,7 @@ data "aws_iam_policy_document" "controller" {
       "arn:${local.partition}:ec2:${local.region}:*:security-group/*",
       "arn:${local.partition}:ec2:${local.region}:*:subnet/*",
       "arn:${local.partition}:ec2:${local.region}:*:capacity-reservation/*",
+      "arn:${local.partition}:ec2:${local.region}:*:placement-group/*"
     ]
 
     actions = [
@@ -190,7 +191,8 @@ data "aws_iam_policy_document" "controller" {
       "ec2:DescribeLaunchTemplates",
       "ec2:DescribeSecurityGroups",
       "ec2:DescribeSpotPriceHistory",
-      "ec2:DescribeSubnets"
+      "ec2:DescribeSubnets",
+      "ec2:DescribePlacementGroups"
     ]
 
     condition {