fix

README.md

@@ -45,6 +45,7 @@ No modules.
 | [aws_iam_group.audit](https://registry.terraform.io/providers/hashicorp/aws/latest/docs/resources/iam_group) | resource |
 | [aws_iam_group_membership.audit](https://registry.terraform.io/providers/hashicorp/aws/latest/docs/resources/iam_group_membership) | resource |
 | [aws_iam_group_policy_attachment.audit](https://registry.terraform.io/providers/hashicorp/aws/latest/docs/resources/iam_group_policy_attachment) | resource |
+| [aws_iam_group_policy_attachment.audit_other](https://registry.terraform.io/providers/hashicorp/aws/latest/docs/resources/iam_group_policy_attachment) | resource |
 | [aws_iam_policy.audit](https://registry.terraform.io/providers/hashicorp/aws/latest/docs/resources/iam_policy) | resource |
 | [aws_iam_user.audit](https://registry.terraform.io/providers/hashicorp/aws/latest/docs/resources/iam_user) | resource |
 | [aws_arn.current](https://registry.terraform.io/providers/hashicorp/aws/latest/docs/data-sources/arn) | data source |

main.tf

@@ -127,16 +127,17 @@ data "aws_iam_policy" "aws-managed-security-audit" {
 }
 
 resource "aws_iam_group_policy_attachment" "audit" {
-  for_each   = toset(compact(concat([data.aws_iam_policy.aws-managed-security-audit.arn, aws_iam_policy.audit.arn], var.additional_policies)))
+  group      = aws_iam_group.audit.name
+  policy_arn = aws_iam_policy.audit.arn
+}
+
+resource "aws_iam_group_policy_attachment" "audit_other" {
+  for_each = toset(compact(concat([data.aws_iam_policy.aws-managed-security-audit.arn], var.additional_policies)))
+  #  for_each   = toset(local.policies)
   group      = aws_iam_group.audit.name
   policy_arn = each.key
 }
 
-#resource "aws_iam_group_policy_attachment" "audit_other" {
-#  for_each   = toset(local.policies)
-#  group      = aws_iam_group.audit.name
-#  policy_arn = each.key
-#}
 #
 #---
 # access key (not for rotation)