Pulumi Release Notes: Pulumi ESC, Deployments GA, Pulumi AI Improvements, AWS S3 Express One Zone Support, and more!

Posted on

We’ve had a busy last few months at Pulumi. From shipping a brand new product offering, Pulumi ESC, to adding several major features in Pulumi Cloud and updates to various Pulumi providers - there is lots to catch up on. In addition to reading these release notes, check out the pulumi/pulumi repo changelog to stay up to date with CLI enhancements after each CLI release. For Pulumi Cloud updates, follow the new features blogs to stay updated on the latest feature releases. Let’s walk through the major updates across Pulumi from the last few months!


Deploy with Pulumi within Pulumi AI

Pulumi AI’s new feature enables deploying cloud infrastructure using AI prompts. Users can rapidly generate and deploy templates through natural language inputs in ‘pulumi new’ CLI command and new project wizard, significantly streamlining the cloud setup process. Additionally, you now have the option to deploy the Pulumi AI generated Pulumi programs from within Pulumi AI and in the New Project Wizard in the Pulumi Cloud console.

Pulumi AI coverage and performance

Pulumi AI can now write Pulumi programs for all 150 cloud providers in the Pulumi registry - up from 20 cloud providers. Pulumi AI has also been updated to OpenAI’s GPT-4 Turbo for enhanced performance along with fine tuning our prompts to improve our AI’s ability to write code.

Pulumi AI Answers

Pulumi AI Answers, launched late last year, has become a go-to repository, hosting an extensive collection of over 50,000 anonymized, infrastructure-as-code commonly asked queries, all carefully selected and presented by Pulumi. As this repository continues to expand, we’re seeing an exponential increase in user traffic, underscoring the immense value it offers. It’s inspiring to see the Pulumi community actively leveraging it as they build and scale their cloud infrastructure

Pulumi Cloud

Pulumi ESC Preview

Pulumi Environment, Secrets and Configuration (ESC) is our answer to the growing needs of our customers to manage secret sprawl and streamline config management. Pulumi ESC allows teams to store and aggregate secrets and configuration from various sources into a composable collection called an environment. You can dynamically generate OIDC credentials from all three major cloud providers (AWS, Azure and GCP), and integrate with other secrets managers like AWS Secrets Manager, Hashicorp Vault, Azure Vault and GCP Secret manager to pull secrets during runtime. Its hierarchical structure simplifies the composition and reuse of configurations, ensuring secure, auditable management and robust access control. With Pulumi ESC, the trend is clear: organizations are choosing its comprehensive approach for managing secrets and configurations, and they are here to stay. Get started with Pulumi ESC

Pulumi ESC Growth

We launched a new template gallery in the New Project Wizard, supercharging Platform teams to provision and distribute organization templates for their development teams to get up and running fast. Developers can generate Pulumi programs from these templates, commit and push code to GitHub and trigger deployment within the Pulumi Cloud console. The gallery supports three template types: Organization Templates for custom internal projects, Pulumi Templates authored by Pulumi to cover common architectural patterns and AI-Generated Templates created through Pulumi AI. For more information, check out the full blog post.

Deployments GA

Pulumi Deployments was made generally available with new improvements such as support for GitHub Enterprise. Since launch, Pulumi Deployments has made infrastructure management at scale seamless for our customers, offering out of the box features such as Review Stacks and multiple deployment triggers.

Customer Managed Agents

Customer Managed Agents for Pulumi Deployments enable customers with hard security and compliance requirements to take advantage of the powerful capabilities of Pulumi Deployments. By self-hosting the agents, you can host them anywhere within your infrastructure on any hardware and environment in order to meet compliance requirements to keep cloud provider credentials within your private network.

MFA in Pulumi Cloud

We now support multi-factor authentication to prevent unauthorized access, ensuring robust security within your organization. Enable MFA by navigating to your account settings.

Pricing Calculator

Pulumi cost calculator for Team Edition enables you to quickly estimate the cost of using Pulumi Cloud. Simply input the number of resources in all your cloud accounts and the percentage of time they will be running to quickly get the total cost per month with a break down of estimated credits, free credits and cost per credit. You can also use the calculator to estimate the cost of using Pulumi Deployments.

Screenshot of the pricing calculator

Historical Views

The Pulumi Cloud stack update page now contains the historical resources in the stack and the historical stack outputs. Simply click on details on each Pulumi update to see the resource state and stack output at the time of the update. This history extends all the way back to the first update of the stack. See the historical views blog post for more details.

Historical views


Import Improvements

We have made several improvements to the pulumi import command to make it easier to bulk import resources into complex programs and components. You can now:

  • Import one resource and then use that resource as the parent for another imported resource. Previously, parents could only refer to resources that already existed; i.e., you would have had to do two imports
  • Specify that a resource is a component to be used as the parent of other imported resources via a new component property in the import file
  • Specify parents by name without having to include the parent URN in the nameTable
  • Specify the logicalName of resources
  • Run pulumi preview --import-file <file> on a program to generate a placeholder import file for every resource that would be created as part of the program. The generated file will contain all the names, types, and URNs already filled in, with blank id fields that need to be filled in. This is useful when you already have the structure of the resources for your program and only need to fill in the IDs of existing resources

Additionally, the import system no longer renames resources to try and make unique names and no longer generates errors just because two resources of different types have the same name. The rules for uniqueness now match what’s valid when writing a Pulumi program. The import system will generate an error if you try to import two resources that would end up with the same URN.

Providers and Packages

AWSX now uses AWS 6.0

We have launched AWSx 2.0, bringing all the benefits AWS Classic 6.0 to Pulumi Crosswalk for AWS (AWSx). The new versions offer several fixes and improvements, including support for the latest Terraform Plugin Framework, 56 new resources and 23 new functions for various AWS services.

AWS 6.0 vs 5.0 provider coverage

Pulumi Google Cloud Classic 7.0

We have updated the Pulumi Google Cloud Classic Provider to reflect the latest developments from Google Cloud, including updates to existing resources and adding support for new resources, functions and input properties. One of the key update is the fix for renaming of the Service Account resource for consistency and ease of use. We also made changes to align with upstream changes to labels. Upgrading to this new version is straightforward. Check out our blog post and migration guide.

AWS S3 Express One Zone Support

We added support for Amazon S3 Express One Zone, a new storage class offering up to 10X faster performance and reduced request costs by 50%. S3 Express One Zone is ideal for data-intensive applications such as AI/ML, HPC, etc. This update is part of our commitment to provide timely and effective support for the latest AWS offerings.

New Provider Resources

We have added 641 functions and 662 resources across our most popular providers, along with many more throughout our ecosystem.

New Provider Resources and Functions

New Community Providers

We welcome new providers to our registry!

New Community Providers

Wrap up

That’s a wrap on our latest Pulumi release notes! With each new feature and improvement, from AI advancements to enhanced cloud deployment tools, we’re excited to see how you leverage these updates. Your feedback is crucial in shaping our path forward, feel free to open issues in our Pulumi Cloud requests repository or in the pulumi/pulumi repository for CLI feedback. Stay connected for more updates, and here’s to building a more efficient cloud future together!