From 2daff45c683c3961dbbf1dc9785099e064404a63 Mon Sep 17 00:00:00 2001 From: Michele Cereda Date: Fri, 29 Mar 2024 00:06:41 +0100 Subject: [PATCH] chore(kb/pulumi): run from a container, add sources --- knowledge base/pulumi.md | 14 +++++++++++++- 1 file changed, 13 insertions(+), 1 deletion(-) diff --git a/knowledge base/pulumi.md b/knowledge base/pulumi.md index cfa3325..81d9f94 100644 --- a/knowledge base/pulumi.md +++ b/knowledge base/pulumi.md @@ -195,6 +195,14 @@ pulumi state rename \ # Unprotect resources that are protected in states. pulumi state unprotect 'resourceUrn' + + +# Run in Docker. +docker run … -it \ + -v "$(pwd):/pulumi/projects" \ + -e 'AWS_ACCESS_KEY_ID' -e 'AWS_SECRET_ACCESS_KEY' -e 'AWS_REGION' \ + 'pulumi/pulumi-nodejs:3.111.1-debian' \ + bash -c "npm ci && pulumi login 's3://bucket/prefix' && pulumi pre --parallel $(nproc)" ``` @@ -487,7 +495,9 @@ TODO ### Policy enforcement -TODO: [Automatically Enforcing AWS Resource Tagging Policies], [Get started with Pulumi policy as code] +TODO + +See [Automatically Enforcing AWS Resource Tagging Policies], [Get started with Pulumi policy as code]. ## Stack @@ -810,6 +820,7 @@ Solution: Read [secrets] and fix the configuration by providing a correct key id - [Aligning Projects between Service and Self-Managed Backends] - [Automatically Enforcing AWS Resource Tagging Policies] - [Get started with Pulumi policy as code] +- [IaC Recommended Practices: Developer Stacks and Git Branches]