-
I think one of the key things to achieve once you start realising the power of Terraform and move beyond single person teams is running it in CI. You could check out some of the services that provide this like Atlantis or Spacelift or just using your CI provider of choice. The security implications are daunting but honestly in the end much better than entrusting individual laptops with this access.
-
SaaSHub
SaaSHub - Software Alternatives and Reviews. SaaSHub helps you find the best software and product alternatives
-
checkov
Prevent cloud misconfigurations and find vulnerabilities during build-time in infrastructure as code, container images and open source packages with Checkov by Bridgecrew.
Once there is a CI pipeline for delivering infra changes you can add static code analysis tools (checkov) and even start testing changes (terratest)
-
terratest
Terratest is a Go library that makes it easier to write automated tests for your infrastructure code.
Once there is a CI pipeline for delivering infra changes you can add static code analysis tools (checkov) and even start testing changes (terratest)
Related posts
-
Terraform Best Practices for Better Infrastructure Management
-
PR-04 at Hacktoberfest: Implementing a Domain Validator for Terraform Provider
-
Ditched Terraform for OpenTofu. Why Devs Everywhere Are Making the Same Move (cheatsheet included)
-
Terraform drift is breaking your cloud: here’s how to stop the chaos
-
Top Terraform Tools to Know in 2024