Enforcing Policy as Code on Discovered Resources with Pulumi

Tyler D Tyler D
Enforcing Policy as Code on Discovered Resources with Pulumi

In this post, we’re introducing a powerful new capability in Pulumi Insights that extends policy as code (PaC) beyond infrastructure as code to automatically govern all cloud resources in your environment. By unifying policy enforcement across both IaC and discovered resources, you can now write policies once and apply them universally - dramatically simplifying how organizations maintain security and compliance standards at scale.

What is Policy as Code (PaC)?

Policy as Code (PaC) is a way to define and enforce infrastructure policies using code. Instead of relying on manual processes or static configuration files, PaC enables automated policy enforcement in a consistent, versioned way. Pulumi’s CrossGuard feature allows you to write policies in general purpose programing languages, applying them across various cloud platforms such as AWS, Azure, GCP, and Kubernetes.

Read more →

Pulumi Copilot is Now Available in VS Code

Meagan Cojocar Meagan Cojocar Eron Wright Eron Wright
Pulumi Copilot is Now Available in VS Code

Programming languages offer dozens of advantages for writing Infrastructure as Code (IaC). One of them is that Large Language Models are effective at using general-purpose programming languages, thanks to the vast amount of high-quality training data available. Building on this advantage, we introduced Pulumi AI and Pulumi Copilot last year to enhance Infrastructure-as-Code development with generative AI capabilities. These tools have significantly streamlined infrastructure deployment for tens of thousands of developers.

Today, we are thrilled to announce that Pulumi Copilot is now available directly within Visual Studio Code Copilot. By simply typing @pulumi in Copilot Chat, developers can now access the power of Pulumi Copilot right within their IDE, saving them time on writing IaC and getting infrastructure deployed.

Read more →

Host your Python app for $1.28 a month

Adam Gordon Bell Adam Gordon Bell
Host your Python app for $1.28 a month

Most developers maintain at least one low-traffic service that still needs to be reliably available. It might be an internal reporting API that gets a few calls per hour or a side project with occasional use. While these services don’t handle much load, they need to exist and remain responsive.

This creates an interesting hosting challenge: how do you maintain high availability for services that might only handle a few thousand requests per month? Traditional hosting approaches mean paying for 24/7 server time, even when your service sits idle.

These services present a unique challenge: they need to be reliable when called but get less than 500,000 requests a month.

Read more →

Kubernetes Best Practices I Wish I Had Known Before

Engin Diri Engin Diri
Kubernetes Best Practices I Wish I Had Known Before

Kubernetes has undeniably transformed the way we build, ship, and run applications. But let’s be honest, getting started with Kubernetes can feel like climbing Mount Everest in flip-flops.

As a cloud-native citizen and Kubernetes enthusiast, I’ve learned the hard way that there are a bunch of “wish I had known that earlier” best practices. They could have saved me time, money, and headaches.

Read more →

Introducing Customizable Resource Auto-naming in Pulumi

Mikhail Shilkov Mikhail Shilkov
Introducing Customizable Resource Auto-naming in Pulumi

I’m thrilled to announce that you can now customize how Pulumi names your cloud resources! Our default auto-naming feature has helped thousands of customers successfully manage cloud resources at scale by automatically ensuring unique, conflict-free resource names across their cloud deployments. This robust naming system has been particularly valuable for teams managing multiple environments, handling zero-downtime deployments, and maintaining clear resource organization. Today, we’re taking it to the next level by giving you control over how these names are generated.

Read more →

A Recipe for a Better AI-based Code Generator

Artur Laksberg Artur Laksberg Simon Howe Simon Howe
A Recipe for a Better AI-based Code Generator

When asked about his research process, Anthony Bourdain would describe how he’d blend his formal culinary training with deep dives into local food culture - from market stalls to family recipes. Modern AI code generation follows a similar path: it can’t just rely on what it knows - it must tap into continuously evolving, domain-specific knowledge bases. Just as Bourdain would combine his classical French training with techniques learned from local kitchens, AI code generators blend their built-in knowledge with retrieved code snippets and type definitions to generate code that accurately represents the user’s intent.

Read more →

Python for DevOps

Adam Gordon Bell Adam Gordon Bell
Python for DevOps

Have you ever had one of those moments: Elasticsearch is crashing, logs are filling up too fast, or a deployment needs data from three different APIs. The big enterprise solutions aren’t quite right, and your team estimates six months to build something proper. But you know that with Python and a few choice libraries, you could hack something together by tomorrow.

Read more →

The Past 6 Months of Pulumi Releases

Meagan Cojocar Meagan Cojocar
The Past 6 Months of Pulumi Releases

As we wrap up 2024, let’s look back at the significant features and improvements Pulumi has delivered in the last half of the year. Some key highlights:

  • Pulumi Visual Studio Code Extension
  • Pulumi ESC General Availability
  • Pulumi Insights 2.0 with Resource Explorer
  • Enhanced Kubernetes support

Read more →

2024 Year in Review: Growth, Innovation and Appreciation

Sara Huddleston Sara Huddleston
2024 Year in Review: Growth, Innovation and Appreciation

It’s the end of 2024, and like everyone, we’re counting down until 2025 while looking back at our year. We’ve had a very exciting year, from unveiling a bold new vision for Pulumi to delivering cutting-edge updates across our Pulumi Cloud.

Here’s a look at how Pulumi has grown, evolved, and continued empowering teams worldwide.

Read more →