From bcdfa0907bec45f398bab60946b8925e73e760a5 Mon Sep 17 00:00:00 2001
From: James Armes <jarmes@codeforamerica.org>
Date: Tue, 10 Dec 2024 13:50:56 -0500
Subject: [PATCH 1/3] feat: Create an endpoint for GuardDuty.

---
 README.md | 4 ++--
 main.tf   | 5 +++++
 2 files changed, 7 insertions(+), 2 deletions(-)

diff --git a/README.md b/README.md
index 12d2952..fa6858a 100644
--- a/README.md
+++ b/README.md
@@ -5,7 +5,7 @@
 This module sets up a standard VPC with public and private subnets, NAT
 gateway(s), service endpoints, and routing.
 
-Creates endpoints for the following services: EC2, S3, SSM
+Creates endpoints for the following services: EC2, GuardDuty, S3, SSM
 
 ## Usage
 
@@ -15,7 +15,7 @@ and private subnets, you could use the following configuration:
 
 ```hcl
 module "vpc" {
-  source = "github.com/codeforamerica/tofu-modules-aws-vpc?ref=1.0.0"
+  source = "github.com/codeforamerica/tofu-modules-aws-vpc?ref=1.1.0"
 
   project        = "my-project"
   environment    = "dev"
diff --git a/main.tf b/main.tf
index 35ab9cb..ce21d1b 100644
--- a/main.tf
+++ b/main.tf
@@ -171,6 +171,11 @@ module "endpoints" {
       subnet_ids          = module.vpc.private_subnets
       private_dns_enabled = true
     },
+    guardduty = {
+      service = "guardduty"
+      tags = { Name = "${local.prefix}-guardduty" }
+      subnet_ids = module.vpc.private_subnets
+    }
   }
 
   tags = var.tags

From 62b074709d49906419cec2bfa956f321d601b100 Mon Sep 17 00:00:00 2001
From: James Armes <jarmes@codeforamerica.org>
Date: Tue, 10 Dec 2024 15:45:27 -0500
Subject: [PATCH 2/3] fix: Updated endpoint name for GuardDuty.

---
 main.tf | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/main.tf b/main.tf
index ce21d1b..23d78a4 100644
--- a/main.tf
+++ b/main.tf
@@ -172,7 +172,7 @@ module "endpoints" {
       private_dns_enabled = true
     },
     guardduty = {
-      service = "guardduty"
+      service = "guardduty-data"
       tags = { Name = "${local.prefix}-guardduty" }
       subnet_ids = module.vpc.private_subnets
     }

From a2442c79cda3a0535d5d80508a7af9f5a38732ee Mon Sep 17 00:00:00 2001
From: James Armes <jarmes@codeforamerica.org>
Date: Tue, 10 Dec 2024 15:53:18 -0500
Subject: [PATCH 3/3] fix: Updated endpoint DNS for GuardDuty.

---
 main.tf | 7 ++++---
 1 file changed, 4 insertions(+), 3 deletions(-)

diff --git a/main.tf b/main.tf
index 23d78a4..1146792 100644
--- a/main.tf
+++ b/main.tf
@@ -172,9 +172,10 @@ module "endpoints" {
       private_dns_enabled = true
     },
     guardduty = {
-      service = "guardduty-data"
-      tags = { Name = "${local.prefix}-guardduty" }
-      subnet_ids = module.vpc.private_subnets
+      service             = "guardduty-data"
+      tags                = { Name = "${local.prefix}-guardduty" }
+      subnet_ids          = module.vpc.private_subnets
+      private_dns_enabled = true
     }
   }