Review this network telemetry update

Situation

Gemini generated Terraform to improve network visibility after intermittent checkout timeouts.

Environment

AWS VPC handles production traffic. Flow-log volume affects CloudWatch cost, and retention must satisfy the 90-day incident-review requirement.

Select suspicious lines in the terminal to flag them before submitting your verdict.

pending review

# VPC Flow Logs
resource "aws_flow_log" "vpc" {
  vpc_id                   = aws_vpc.main.id
  traffic_type             = "ALL"
  log_destination_type     = "cloud-watch-logs"
  log_destination          = aws_cloudwatch_log_group.flow_logs.arn
  iam_role_arn             = aws_iam_role.flow_logs.arn
}

resource "aws_cloudwatch_log_group" "flow_logs" {
  name              = "/aws/vpc/flowlogs"
  retention_in_days = 90
}