stage blog for re:invent #13453
stage blog for re:invent #13453
Conversation
|
Your site preview for commit a01d239 is ready! 🎉 http://www-testing-pulumi-docs-origin-pr-13453-a01d2397.s3-website.us-west-2.amazonaws.com. |
|
|
||
| [Check out the Pulumi roadmap](https://github.com/orgs/pulumi/projects/44/views/1) for upcoming features, let us know your feature requests by [creating an issue on GitHub](https://github.com/pulumi/pulumi/issues), connect with the [Pulumi community on Slack](https://slack.pulumi.com/), and if you haven’t yet, [sign-up for Pulumi Cloud](https://app.pulumi.com/signup) to get access to our full suite of products – Pulumi IaC, Pulumi ESC, and Pulumi Insights – so you can automate, secure, and manage everything you run in the cloud. | ||
|
|
||
| Meta image credit: [ESO/M. Zamani](https://www.eso.org/public/images/potw2229a/) |
There was a problem hiding this comment.
| Meta image credit: [ESO/M. Zamani](https://www.eso.org/public/images/potw2229a/) | |
| _Meta image credit:_ [ESO/M. Zamani](https://www.eso.org/public/images/potw2229a/) |
|
|
||
| ## Why Pulumi for AWS? | ||
|
|
||
| Pulumi empowers organizations to automate AWS cloud infrastructure through code, tame secrets sprawl through centralized secrets management, and manage cloud assets and compliance with the help of AI. Pulumi encourages infrastructure, platform, development, DevOps, and security teams to collaborate and accelerates time to market with greater control and minimized risk. |
There was a problem hiding this comment.
| Pulumi empowers organizations to automate AWS cloud infrastructure through code, tame secrets sprawl through centralized secrets management, and manage cloud assets and compliance with the help of AI. Pulumi encourages infrastructure, platform, development, DevOps, and security teams to collaborate and accelerates time to market with greater control and minimized risk. | |
| Pulumi empowers your organization to automate AWS cloud infrastructure through code, tame secrets sprawl through centralized secrets management, and manage cloud assets and compliance with the help of AI. Pulumi encourages infrastructure, platform, development, DevOps, and security teams to collaborate and accelerates time to market with greater control and minimized risk. |
|
|
||
| ### Pulumi Insights: Intelligent Cloud Management | ||
|
|
||
| [Pulumi Insights](/product/pulumi-insights/) empowers organizations to tackle cloud complexity by delivering visibility, actionable insights, and AI-assisted optimization for their infrastructure. With Pulumi Insights, companies can scan and sync their entire AWS resource inventory – including resources not managed with Pulumi IaC – ensuring a complete picture of their cloud assets. Compliance checks can be run against standards such as PCI DSS, ISO 27001, and CIS benchmarks, helping maintain regulatory compliance and mitigate risks. The AI-powered [Pulumi Copilot](/product/copilot/) provides an interactive assistant to gain visibility into a team's activity, discover cost saving opportunities, get compliant, and debug cloud failures. Pulumi Insights enables companies to discover, understand, manage, and improve their cloud infrastructure on their journey towards intelligent infrastructure management. |
There was a problem hiding this comment.
@thtmnisamnstr should we add in more market context here and related it back to the complexity we introduce at the very beginning?
This complexity creates significant challenges in making sense of the millions of cloud resources and resource updates per month, across hundreds of clouds, regions, and accounts. Identifying cost saving opportunities is difficult amidst soaring cloud expenditures, and maintaining compliance and security is mission critical because errors can cause catastrophic damage.
|
|
||
| ### Pulumi ESC: Centralized Secrets Management | ||
|
|
||
| Secrets sprawl, long-lived static credentials, and passing around secrets in plaintext to developers expose organizations to security vulnerabilities. [Pulumi ESC](/product/secrets-management/) addresses these challenges by offering seamless two-way integration – both pull and sync – with AWS Secrets Manager and other popular secrets stores, as well as the capability to consume secrets securely across any applications, tools, and CI/CD platform. Developers gain easy, secure access to secrets via CLI, API, Kubernetes operators, and SDKs – eliminating the need for .env files and reducing the security risks associated with them. Additionally, Pulumi Insights can issue dynamic, short-lived AWS authentication tokens on demand via OpenID Connect (OIDC), reducing the risks that come with long-lived access tokens, while RBAC, versioning, and a detailed audit log let you trust (and prove) your secrets are secure. |
There was a problem hiding this comment.
Same here, gives a bit more context for why we launched it and connects it back to the founding vision
This complexity creates significant challenges in managing sensitive credentials, API keys, and configurations across development, testing, and production environments. As organizations scale, they often face issues of secrets and configuration sprawl, duplication of secrets, and too many long-lived static secrets. None of the existing secrets management solutions adequately address these challenges, exposing enterprises to errors that can lead to security breaches, unintended exposure of sensitive data, and unauthorized access to critical resources.
There was a problem hiding this comment.
This one too. I'll work them both in.
Signed-off-by: thtmnisamnstr <gavinj1984@gmail.com>
|
Your site preview for commit 53f076b is ready! 🎉 http://www-testing-pulumi-docs-origin-pr-13453-53f076be.s3-website.us-west-2.amazonaws.com. |
Signed-off-by: thtmnisamnstr <gavinj1984@gmail.com>
|
Your site preview for commit 2c0e3a0 is ready! 🎉 http://www-testing-pulumi-docs-origin-pr-13453-2c0e3a06.s3-website.us-west-2.amazonaws.com. |
Proposed changes
Unreleased product version (optional)
Related issues (optional)