Please review this Terraform/Terragrunt code for:

**Security:**
- Hardcoded secrets or sensitive data
- Overly permissive IAM policies or security groups
- Missing encryption configurations

**Best Practices:**
- Proper resource naming conventions
- Appropriate use of variables, locals, and data sources
- Required provider version constraints
- Proper tagging strategy

**Structure:**
- Code organization and file structure
- Use of modules vs. inline resources
- State management configuration

**Terragrunt Specific (if applicable):**
- Proper use of dependencies and remote_state
- Appropriate generate blocks
- Include block usage

Provide specific suggestions for improvement with code examples.