UPD: sample code for validating default_tags keys

modules/compute/ec2_default_tags/main.tf

@@ -91,8 +91,12 @@ resource "aws_eip" "ec2-eip" {
 data "aws_default_tags" "this" {
   lifecycle {
     postcondition {
+      # check default_tags size
       condition     = length(self.tags) >= 1
-      error_message = "Validation failed: Provider default_tags not set."
+      error_message = "Provider default_tags not set."
+      # to check for specific keys
+      # condition     = alltrue([for t in ["CostCenter", "Owner", "Project", "Application", "DynamicAddressGroup", "Environment"] : contains(keys(self.tags), t)])
+      # error_message = "Required tag(s) not set in provider default tags."
     }
   }
 }

modules/compute/ec2_default_tags/provider.tf

@@ -4,7 +4,7 @@ terraform {
   required_providers {
     aws = {
       source  = "hashicorp/aws"
-      version = "~> 5.0.0"
+      version = "~> 5.32.0"
     }
   }
 }