diff --git a/examples/rds-postgres/rds-postgres-security-group.tf b/examples/rds-postgres/rds-postgres-security-group.tf
new file mode 100644
index 0000000..b6e6b7c
--- /dev/null
+++ b/examples/rds-postgres/rds-postgres-security-group.tf
@@ -0,0 +1,11 @@
+module "postgres" {
+  source = "git@github.e.it.census.gov:terraform-modules/aws-common-security-groups.git//rds-postgres?ref=tf-upgrade"
+
+  vpc_id                    = var.vpc_id
+  name                      = "my-rds-sg"
+  description               = "My RDS Postgres SG"
+  ingress_prefix_list_names = ["rds-postgres.edl.project", "tableau.dev.adsd.project"]
+  ingress_networks          = []
+  ingress_security_groups   = []
+  tags                      = {}
+}
diff --git a/rds-postgres/README.md b/rds-postgres/README.md
index 9d62684..e4702cb 100644
--- a/rds-postgres/README.md
+++ b/rds-postgres/README.md
@@ -8,7 +8,7 @@ Default and auxilliary ports are included in this. They are opened to everything
 
 ```hcl
 module "postgres" {
-  source = "git@github.e.it.census.gov:terraform-modules/aws-common-security-groups.git//rds-postgres"
+  source = "git@github.e.it.census.gov:terraform-modules/aws-common-security-groups.git//rds-postgres?ref=tf-ugprade"
 
   vpc_id = var.vpc_id
   ## optional
@@ -41,14 +41,14 @@ Postgres.  This will fail if the prefix list does not exist.
 
 | Name | Version |
 |------|---------|
-| <a name="requirement_terraform"></a> [terraform](#requirement\_terraform) | >= 0.13 |
-| <a name="requirement_aws"></a> [aws](#requirement\_aws) | >= 3.66.0 |
+| <a name="requirement_terraform"></a> [terraform](#requirement\_terraform) | >= 1.0.0 |
+| <a name="requirement_aws"></a> [aws](#requirement\_aws) | >= 5.0 |
 
 ## Providers
 
 | Name | Version |
 |------|---------|
-| <a name="provider_aws"></a> [aws](#provider\_aws) | >= 3.66.0 |
+| <a name="provider_aws"></a> [aws](#provider\_aws) | >= 5.0 |
 
 ## Modules
 
@@ -70,16 +70,16 @@ No modules.
 | Name | Description | Type | Default | Required |
 |------|-------------|------|---------|:--------:|
 | <a name="input_description"></a> [description](#input\_description) | Security Group Description | `string` | `"RDS PostgreSQL Security Group"` | no |
-| <a name="input_egress_networks"></a> [egress\_networks](#input\_egress\_networks) | List of egress networks (all ports) | `list(string)` | <pre>[<br>  "0.0.0.0/0"<br>]</pre> | no |
+| <a name="input_egress_networks"></a> [egress\_networks](#input\_egress\_networks) | List of egress networks (all ports) | `list(string)` | <pre>[<br/>  "0.0.0.0/0"<br/>]</pre> | no |
 | <a name="input_egress_prefix_list_names"></a> [egress\_prefix\_list\_names](#input\_egress\_prefix\_list\_names) | List of prefix list names for eggress access | `list(string)` | `[]` | no |
 | <a name="input_egress_security_groups"></a> [egress\_security\_groups](#input\_egress\_security\_groups) | List of egress security groups (all ports) | `list(string)` | `[]` | no |
 | <a name="input_enable_self"></a> [enable\_self](#input\_enable\_self) | Enable\|Disable self full access | `bool` | `false` | no |
-| <a name="input_ingress_networks"></a> [ingress\_networks](#input\_ingress\_networks) | List of ingress networks for external access (not all ports). Use null to disable built-in settings | `list(string)` | <pre>[<br>  "0.0.0.0/0"<br>]</pre> | no |
+| <a name="input_ingress_networks"></a> [ingress\_networks](#input\_ingress\_networks) | List of ingress networks for external access (not all ports). Use null to disable built-in settings | `list(string)` | <pre>[<br/>  "0.0.0.0/0"<br/>]</pre> | no |
 | <a name="input_ingress_prefix_list_names"></a> [ingress\_prefix\_list\_names](#input\_ingress\_prefix\_list\_names) | List of prefix list names for ingress access | `list(string)` | `[]` | no |
 | <a name="input_ingress_security_groups"></a> [ingress\_security\_groups](#input\_ingress\_security\_groups) | List of ingress security groups for all ports | `list(string)` | `[]` | no |
 | <a name="input_name"></a> [name](#input\_name) | Security Group Name | `string` | `"m-postgres-db"` | no |
 | <a name="input_short_description"></a> [short\_description](#input\_short\_description) | Security Group Short Description | `string` | `"PostgreSQL"` | no |
-| <a name="input_tags"></a> [tags](#input\_tags) | Extra security group tags | `map` | <pre>{<br>  "CostAllocation": "csvd:infrastructure",<br>  "Environment": "csvd-infrastructure"<br>}</pre> | no |
+| <a name="input_tags"></a> [tags](#input\_tags) | Extra security group tags | `map` | <pre>{<br/>  "CostAllocation": "csvd:infrastructure",<br/>  "Environment": "csvd-infrastructure"<br/>}</pre> | no |
 | <a name="input_use_vpc_cidr"></a> [use\_vpc\_cidr](#input\_use\_vpc\_cidr) | Enable\|Disable use of VPC CIDR block in the ingress\_networks | `bool` | `false` | no |
 | <a name="input_vpc_full_name"></a> [vpc\_full\_name](#input\_vpc\_full\_name) | VPC Name | `string` | `""` | no |
 | <a name="input_vpc_id"></a> [vpc\_id](#input\_vpc\_id) | VPC ID Number | `string` | n/a | yes |
diff --git a/rds-postgres/main.tf b/rds-postgres/main.tf
index b046a0e..39d5c80 100644
--- a/rds-postgres/main.tf
+++ b/rds-postgres/main.tf
@@ -9,7 +9,7 @@
 *
 * ```hcl
 * module "postgres" {
-*   source = "git@github.e.it.census.gov:terraform-modules/aws-common-security-groups.git//rds-postgres"
+*   source = "git@github.e.it.census.gov:terraform-modules/aws-common-security-groups.git//rds-postgres?ref=tf-ugprade"
 *
 *   vpc_id = var.vpc_id
 *   ## optional