Your team uses Terraform to manage a multi-region AWS deployment consisting of over 500 resources. The state file is stored in an S3 backend with DynamoDB locking. Recently, one of your colleagues accidentally deleted the state file from S3 while trying to clean up old backups. Fortunately, you have a backup from two days ago. However, after restoring the backup, you notice that several recent changes, including two new EC2 instances and a security group, are missing from the state. The actual resources still exist in AWS. You need to bring the state back in sync with the real-world infrastructure without recreating these resources. What should you do?
Correct: Import adds existing resources to state.
Why this answer
Option C is correct because `terraform import` can be used to add existing resources to state. Option A is wrong because `terraform apply` with the missing resources in config will try to create them again and conflict. Option B is wrong because `terraform refresh` updates state for existing resources, but cannot add missing resources if they are not referenced in state.
Option D is wrong because manually editing the state file is error-prone and not recommended.