If you have multiple projects and use cloud storage provider as backend, can you use the same location (eg: same S3 bucket) for multiple projects or will you end up having conflicts with stacks that have the same name, even though they are from different projects?

If I would like to create a Pulumi provider from a Terraform one (I’m thinking about Civo): what would be the correct way to do it?

Hi! I am trying to install the nginx ingress helm chart and having problems with the settings for the service monitor. According to https://github.com/helm/charts/tree/master/stable/nginx-ingress for prometheus operator I need to set

controller.metrics.serviceMonitor.additionalLabels

to one label in particular, but I don't know in which format. If I try just setting that property to an object with the label as a property, pulumi fails because the manifest is not in the expected format or something like that. If I set is as a string, like

"{ release: 'prometheus-operator' }"

it errors with

error converting YAML to JSON: yaml: line 12: could not find expected ':'

. You can see how

additionalLabels

is used in the service monitor template at https://github.com/helm/charts/blob/master/stable/nginx-ingress/templates/controller-servicemonitor.yaml. Any idea of how to get it working? Thanks!

hello! i successfully imported an AWS MSK cluster into my Pulumi stack now whenever i try to update the MSK cluster (eg just changing tags), i get the following error:

panic: fatal: An assertion has failed: Expected diff to not require deletion or replacement during Update of urn:pulumi:production::bos::aws:msk/cluster:Cluster::kafka
    goroutine 30 [running]:
    <http://github.com/pulumi/pulumi/sdk/v2/go/common/util/contract.failfast(...)|github.com/pulumi/pulumi/sdk/v2/go/common/util/contract.failfast(...)>
    	/home/travis/gopath/pkg/mod/github.com/pulumi/pulumi/sdk/v2@v2.1.1-0.20200508232528-aa313aecf8a0/go/common/util/contract/failfast.go:23
    <http://github.com/pulumi/pulumi/sdk/v2/go/common/util/contract.Assertf(0xc0008d3200|github.com/pulumi/pulumi/sdk/v2/go/common/util/contract.Assertf(0xc0008d3200>, 0x69d26e0, 0x48, 0xc00066f728, 0x1, 0x1)
    	/home/travis/gopath/pkg/mod/github.com/pulumi/pulumi/sdk/v2@v2.1.1-0.20200508232528-aa313aecf8a0/go/common/util/contract/assert.go:33 +0x197
    <http://github.com/pulumi/pulumi-terraform-bridge/v2/pkg/tfbridge.(*Provider).Update(0xc000501680|github.com/pulumi/pulumi-terraform-bridge/v2/pkg/tfbridge.(*Provider).Update(0xc000501680>, 0x73307c0, 0xc000fbd200, 0xc000212000, 0xc000501680, 0x5d1e201, 0xc000282440)
    	/home/travis/gopath/pkg/mod/github.com/pulumi/pulumi-terraform-bridge/v2@v2.3.1/pkg/tfbridge/provider.go:825 +0x81d
    <http://github.com/pulumi/pulumi/sdk/v2/proto/go._ResourceProvider_Update_Handler.func1(0x73307c0|github.com/pulumi/pulumi/sdk/v2/proto/go._ResourceProvider_Update_Handler.func1(0x73307c0>, 0xc000fbd200, 0x67272a0, 0xc000212000, 0x671dca0, 0xaec2240, 0x73307c0, 0xc000fbd200)
    	/home/travis/gopath/pkg/mod/github.com/pulumi/pulumi/sdk/v2@v2.1.1-0.20200508232528-aa313aecf8a0/proto/go/provider.pb.go:1920 +0x89
    <http://github.com/grpc-ecosystem/grpc-opentracing/go/otgrpc.OpenTracingServerInterceptor.func1(0x73307c0|github.com/grpc-ecosystem/grpc-opentracing/go/otgrpc.OpenTracingServerInterceptor.func1(0x73307c0>, 0xc000fbc1e0, 0x67272a0, 0xc000212000, 0xc000ef8240, 0xc000ef8260, 0x0, 0x0, 0x72785e0, 0xc0003eb220)
    	/home/travis/gopath/pkg/mod/github.com/grpc-ecosystem/grpc-opentracing@v0.0.0-20180507213350-8e809c8a8645/go/otgrpc/server.go:57 +0x2f9
    <http://github.com/pulumi/pulumi/sdk/v2/proto/go._ResourceProvider_Update_Handler(0x67d2d80|github.com/pulumi/pulumi/sdk/v2/proto/go._ResourceProvider_Update_Handler(0x67d2d80>, 0xc000501680, 0x73307c0, 0xc000fbc1e0, 0xc0004641e0, 0xc000858060, 0x73307c0, 0xc000fbc1e0, 0xc000c7ca80, 0x952)
    	/home/travis/gopath/pkg/mod/github.com/pulumi/pulumi/sdk/v2@v2.1.1-0.20200508232528-aa313aecf8a0/proto/go/provider.pb.go:1922 +0x14b
    <http://google.golang.org/grpc.(*Server).processUnaryRPC(0xc0002d56c0|google.golang.org/grpc.(*Server).processUnaryRPC(0xc0002d56c0>, 0x7355b00, 0xc000501b00, 0xc000214300, 0xc00090d860, 0xae94738, 0x0, 0x0, 0x0)
    	/home/travis/gopath/pkg/mod/google.golang.org/grpc@v1.28.0/server.go:1082 +0x4fd
    <http://google.golang.org/grpc.(*Server).handleStream(0xc0002d56c0|google.golang.org/grpc.(*Server).handleStream(0xc0002d56c0>, 0x7355b00, 0xc000501b00, 0xc000214300, 0x0)
    	/home/travis/gopath/pkg/mod/google.golang.org/grpc@v1.28.0/server.go:1405 +0xd23
    <http://google.golang.org/grpc.(*Server).serveStreams.func1.1(0xc0008dd100|google.golang.org/grpc.(*Server).serveStreams.func1.1(0xc0008dd100>, 0xc0002d56c0, 0x7355b00, 0xc000501b00, 0xc000214300)
    	/home/travis/gopath/pkg/mod/google.golang.org/grpc@v1.28.0/server.go:746 +0xbb
    created by <http://google.golang.org/grpc.(*Server).serveStreams.func1|google.golang.org/grpc.(*Server).serveStreams.func1>
    	/home/travis/gopath/pkg/mod/google.golang.org/grpc@v1.28.0/server.go:744 +0xa1

    error: update failed

any clue what might be happening?

am I correct in my understanding that the only way to unwrap? an

Output<string>

is to

apply

it?

Are there any troubleshooting steps or known limitations (private repos?) for the Github App integration? I've added the App and gave access to all repos and added the PR workflow and it is working, but I get no comment or second check from the app.

Is there a way to

apply

the entire stack?

I have been working on wiring up my pulumi stack to deploy via GitHub actions. I've had this working perfectly locally, but when running pulumi up using the Github Action, I now consistently get the error:

updating urn:pulumi:dev::infra::awsx:x:ecs:FargateService$aws:ecs/service:Service::backend: timeout while waiting for state to become 'true' (last state: 'false', timeout: 10m0s)

All other steps run just fine, and ultimately the service does finish deploying in AWS and end up on the right state.

How do I add a cloudwatch event so that my codepipeline triggers on an ECR image change/upload?

Just downloaded and installed pulumi 2.5 but the cli is still complaining that 2.4 is installed..

This message was deleted.

New questions: I have a security group with an empty ingress and egress, attached to a load balancer. It appears default rules are being created: How do I prevent this?

const loadbalancer_sg = new awsx.ec2.SecurityGroup(`lb-${region}-${environment}-${service.name}-sg`, {
                vpc: vpc,
                ingress: [],
                egress: [],
            })

 listener = new awsx.elasticloadbalancingv2.ApplicationLoadBalancer(`lb-${region}-${environment}-${service.name}`, {
                name: `lb-use1-${environment}-${service.name}`,
                vpc: vpc,
                subnets: vpc.getSubnetsIds('public'),
                external: true,
                securityGroups: [loadbalancer_sg.id]
            })

https://www.pulumi.com/blog/introducing-new-docker-images/ is missing the example for installing helm in the go based docker image that it mentions.

Hello! I'm evaluating Pulumi for my team, but got stuck with a vpc error. I posted on Twitter before finding this chat: https://mobile.twitter.com/marcusradell/status/1276146751200772105

I'm a bit confused, because I think I read in the Pulumi docs that you usually don't use the default vpc in production. But if that's the case, why are all examples using it? It makes it much harder to evaluate.

I do love the premium feel of the entire product so far though ❤️

What would cause pulumi to show changes to a stack when nothing has changed between subsequent runs? I keep getting these changes on each run, even without modifying any files:

Is there a convenient way to grab subnets off a vpc that was imported? I know if I create a new awsx Vpc I'll have access to some subnet methods, but passing in an existing aws.Vpc (imported) doesn't populate

privateSubnets

or

publicSubnets

.

Is it possible to use StackReference to access projects and stacks not in app.pulumi.com? I've got some projects in S3, and I'd like to use StackReference to share values between them, but I can't grok the code in pulumi/pkg/backend/httpstate... not even confident that's the right place to be looking...

hi folks, how can i setup AKS cluster with the existing vnet/subnet?

@fast-ice-1848 You can reference existing resources - See https://www.pulumi.com/blog/adopting-existing-cloud-resources-into-pulumi/

I'm trying to setup github actions. I have the pulumi code in a subfolder named

infra

, but can't find a way to tell pulumi to use that subfolder. I can set a default working-directory for run commands, but not for

uses

. Any tips?

anyone able to help with some python? Im having trouble passing to Output callback values into a container definition. I am doing this:

redis_url = redis.cache_nodes.apply(lambda cache_nodes: cache_nodes[0].get('address'))

def generate_container_definition(log_group_name):
    return json.dumps([{
		'name': 'api',
		'image': 'api/api:latest',
		'portMappings': [{
	 		'containerPort': 80,
			'hostPort': 80,
			'protocol': 'tcp'
		}],
		'logConfiguration': {
			'logDriver': 'awslogs',
			'options': {
                    'awslogs-group': log_group_name,
                    'awslogs-region': aws.get_region().name,
                }
            },
		'environment' : [
			{ 'name' : 'ENV', 'value' : config.get('ENV') },
			{ 'name' : 'REDIS_URL', 'value' : redis_url }
		]
	}])

but then Im getting: TypeError: Object of type Output is not JSON serializable

is there a way to pass two output values into that function definition or am I doing something wrong?

Hi everyone, I'm trying to import some dns recordsets from gcp using pulumi and I just get flat timeout errors. Also get timeout errors trying to create them. In fact, I seem to be getting a lot of timeout errors. Anyone else have these kinds of problems? More details here: https://github.com/pulumi/pulumi-gcp/issues/375

@broad-dentist-41670 I have been getting a few timeout errors with azure also - Not sure if there are any configs that can be set to extend timeout durations?

I am getting this error to my surprise "*error: secrets (code=InvalidArgument): keyvault.BaseClient#Decrypt: Failure responding to request: StatusCode=400 -- Original Error: autorest/azure: Service returned an error. Status=400 Code="BadParameter" Message="The parameter is incorrect.\r\n"*". Does anyone have any idea?