No matter how you like to participate in developer communities, Pulumi wants to meet you there. If you want to meet other Pulumi users to share use-cases and best practices, contribute code or documentation, see us at an event, or just tell a story about something cool you did with Pulumi, you are part of our community.

Pulumi Community

Hi All,
I am using eks.cluster library to create eks cluster and want to add some custom tags to cluster security group using clusterSecurityGroupTags flag
but it's not working sample code as below

```const cluster = new eks.Cluster("my-eks-cluster", {
    clusterSecurityGroupTags: {
        "Environment": "Production",
        "Team": "DevOps"
    },
})```
these tag not able to apply
pulumi version is latest

look like it apply to additional EKS security group, must change the name of parameter from  `clusterSecurityGroupTags` to `additionalClusterSecurityGroupTags`  something like this

There is no such parameter. You can see <https://github.com/pulumi/pulumi-eks/blob/92465dce68dd560ae48fd0211cae9a74b4ee19e4/nodejs/eks/cluster.ts#L527|here> that the <https://www.pulumi.com/registry/packages/eks/api-docs/cluster/#clustersecuritygrouptags_nodejs|clusterSecurityGroupTags> are passed down to the <https://www.pulumi.com/registry/packages/aws/api-docs/ec2/securitygroup/|aws.ec2.SecurityGroup> resource. (Note that there is also the <https://www.pulumi.com/registry/packages/eks/api-docs/cluster/#nodesecuritygrouptags_nodejs|nodeSecurityGroupTags> option that are applied to the default node group security group, which is not the same as the cluster security group.)

these both `clusterSecurityGroupTags` applied to EKS additional Security group.
and `nodeSecurityGroupTags`  applied to security group which say's it's node security group. but this security group not attached to node.

defaultnodegroup disable in eks configuration

An `eks.ManagedNodeGroup` is a "regular" `aws.eks.NodeGroup` (<https://www.pulumi.com/registry/packages/aws/api-docs/eks/nodegroup/|docs>) that does not take a security group or security group tags. The `eks.Cluster.nodeSecurityGroupTags` are only passed to `eks.NodeGroup` and `eks.NodeGroupV2`, check <https://github.com/pulumi/pulumi-eks/blob/master/nodejs/eks/nodegroup.ts|the implementation> for details.

Also see <https://docs.aws.amazon.com/eks/latest/userguide/managed-node-groups.html> and <https://docs.aws.amazon.com/eks/latest/userguide/worker.html> for reference