No matter how you like to participate in developer communities, Pulumi wants to meet you there. If you want to meet other Pulumi users to share use-cases and best practices, contribute code or documentation, see us at an event, or just tell a story about something cool you did with Pulumi, you are part of our community.

Pulumi Community

Is there a property that lets you get the security group ID of the EKS created security group on a worker node created with aws.eks.NodeGroup?

There's a security group attached to EC2 instances that are created from a NodeGroup that have this description:
```EKS created security group applied to ENI that is attached to EKS Control Plane master nodes, as well as any managed workloads.```
For the life of me, I cannot figure out how to get the security group ID on the instances.

I have tried both of these:
```eksCluster.nodeSecurityGroup.id
eksCluster.clusterSecurityGroup.id```
Neither represent the ID of the security group actually attached to the k8s worker nodes.

After exporting my stack, I can see the security group ID I'm after in a path `deployment.resources.56.outputs.vpcConfig.clusterSecurityGroupId`

The vpcConfig property does not exist on the interfaces though :thinking_face:

There must be a way to get the vpcConfig off a cluster right???

Found it! Woot! `eksCluster.eksCluster.vpcConfig.clusterSecurityGroupId`