This is solved in tools like Pulumi by having a declarative and auditable build ... | Hacker News

Hacker Newsnew | past | comments | ask | show | jobs | submit

		charlotte-fyi on June 4, 2024 \| parent \| context \| favorite \| on: Show HN: Brioche – A new Nix-like package manager This is solved in tools like Pulumi by having a declarative and auditable build artifact as an intermediate step that can be diffed. This seems to solve a lot of the security issues (and is generally a good idea anyway).

NegativeLatency on June 4, 2024 [–]

I would still prefer to debug terraform (which is a fair bit more declarative) rather than pulumi

Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact