New Product Features Announced
Pulumi, a leader in infrastructure as code and platform engineering, has unveiled four important product updates. These enhancements focus on improving security, optimizing automation, and offering better management of cloud resources, reinforcing Pulumi's dedication to effective cloud infrastructure management.
Rotated Secrets and GitHub Action
-
Rotated Secrets in Pulumi ESC: This feature automates the rotation of secret credentials, allowing organizations to mitigate security risks while integrating with current workflows. Secrets can be rotated on-demand or on a schedule, maintaining availability during transitions with a dual-secret strategy. Complete auditing capabilities ensure thorough tracking of credential history.
-
Pulumi ESC GitHub Action: This tool allows teams to securely inject secrets into GitHub Actions workflows dynamically, rather than using static credentials. This approach reduces the risk of credential leaks and enhances CI/CD pipeline efficiency.
Improved Access Controls and Governance
-
Granular Access Controls: The new Role-Based Access Control (RBAC) system offers detailed control over resource access and modifications. Organizations can define custom roles, apply permissions to users and teams, and manage access to specific resources, enhancing security across Pulumi Cloud products.
-
Policy as Code for Discovered Resources: Pulumi Insights has expanded its policy as code capabilities, allowing governance across all cloud resources. This enables organizations to apply consistent policies across both infrastructure as code and other discovered resources, streamlining compliance and security management.
Conclusion
These enhancements represent a significant advancement in Pulumi's offerings, aimed at bolstering cloud security and operational efficiency. For further details, refer to the full press release.