Pulumi, a prominent provider of infrastructure as code and platform engineering solutions, has introduced new capabilities aimed at strengthening cloud security, optimizing automation, and improving control over cloud resources at scale. These enhancements align with Pulumi's goal to make cloud infrastructure management secure and efficient.
The first new feature, Rotated Secrets, automates credential security for Pulumi ESC, the company's centralized secrets management tool. This feature employs a two-secret strategy, whereby only two secrets are valid at any time, ensuring continued availability during transitions. It also includes comprehensive auditing and tracking of credential history, helping to reduce security risks while integrating seamlessly into existing workflows.
Pulumi is also introducing a new role-based access control (RBAC) system, which enhances control over resource access. This feature centralizes control across all Pulumi Cloud products, enabling organizations to define custom roles, assign permissions, and control access to specific resources like IaC stacks and ESC environments.
Lastly, Pulumi Insights now features policy as code (PaC) capabilities for discovered resources. This simplifies maintaining security and compliance across cloud resources. The new PaC capabilities allow teams to govern cloud resources automatically, with the ability to write policies once and apply them universally across various environments. A dedicated dashboard provides visibility into policy violations, further enhancing compliance.
For more information on Pulumi's latest enhancements, visit Pulumi's website.