I started checking out pulumi. We have some stuff on Vultr, how does it deal w/ 'unknown' providers?

Q: What is the best way to share a common block of pulumi config between 2 stacks? I have to duplicate the config in both YAML files (in my case

Pulumi.dev.yaml

and

Pulumi.prod.yaml

) I was thinking about digging deep to understand how secrets/non-secrets are set/get then coming up with a new module which extends

Config

class. Just want to ask dev team before heading down that rabbit hole.

Question, trying to do "pulumi up", "pulumi config", etc. etc. programmatically. i.e., importing some (node/ts) package and invoking functions with parameters, instead of the command line tool. Is this possible? If so, where is it documented?

I'm getting AWS region as undefined using pulumi config object

Please help

pulumi.dev.yaml ---------------- config: aws:region: ap-south-1 pulum:rds_master_username: master_user

const config = new pulumi.Config(); console.log(config.get("aws:region"))

What I'm doing wrong here? any suggestion please

Q: I have a file-like multiline K8S ConfigMap as below:

apiVersion: v1
data:
  appconfig.yml: |-
    big_key:
      key1: value1
      key2: value2
kind: ConfigMap

According to k8s.ConfigMap API, the

data

only takes

{[key: string]: string}

key-pair type. Could anyone please point me to a document on how to parse in object instead?

Q: How could pulumi/kubernetesx SDK know which K8S cluster to apply to? I could not find any reference to K8S cluster name in https://www.pulumi.com/docs/reference/pkg/nodejs/pulumi/kubernetesx/, so I assume it fallback to whatever has been set by

$KUBECONFIG

?

I need a brief sanity check, maybe I'm doing something wrong (still pretty new to Pulumi!). I'm using the Pulumi GitHub provider to configure repositories in a GitHub organization. Like described here, I set my GitHub Personal Access Token with

pulumi config set github:token XXXXXXXXXXXXXX --secret

In my Pulumi.stack.yaml configuration file the token is then shown encrypted as expected. However, at least for me, the token shows up as plain text in the stack's state. In the output of

pulumi stack export

under the GitHub provider, in both "inputs" and "outputs", the token is shown as plaintext. Can anyone confirm this? Is this intended? I'm surprised as other secrets that I added to the stack (for example to be used as ActionsSecrets) are encrypted also in the stack export output.

Hi, I experienced strange behavior of pulumi config cp command passing path to config file. When I run pulumi --stack example-env config --config-file Pulumi.example-env.yaml cp --dest example-cp it overrides secrets in

Pulumi.example-env.yaml

stack file which causes 400 Unauthorized and Pulumi.example-cp.yaml is not created. @broad-dog-22463 Do you know more about it?

Hi! There's a way to get an existing kubernetes resource? I'm trying to get a service account token to use it as input but it seems kubernetes package does not provide get resource functions 😕

Hello all, I'm getting

Error 66

/

failed to pick subchannel

when trying to run pulumi up against this python example. I'm using version 2.8.2 on Windows 10. Any ideas as to what could be wrong?

Hi pulumi-ers! I am trying to figure out how to use a post request to trigger a lambda function in aws. I've use the pulumi sdk to create a get and an options request before, so i have some familiarity with it. However, I can't figure out how to capture the json body from the request in the lambda function. Can anybody shed some light on what I should do. Or point me in the direction of a resource that might help? Any feedback/help would be greatly appreciated.

Hi! I've been trying a few ways to separate out the projects so that I have a

foundation

project that sets up long living resources like VPC and Db, and an

application

project that builds on top of the foundation resources and creates the instances and etc. The problem I'm coming across is regarding the depth of hydration that the available methods of migrating resources have. For example when I recreate a VPC using

new awsx.ec2.Vpc('name', vpc: existingVPC)

and then try to use that vpc for

new <http://awsx.lb|awsx.lb>.ApplicationLoadBalancer

I get a failure about ALB requiring two subnets. This problem doesn't occur when I'm doing the same without splitting them into two different projects. Am I missing some easier way to rehydrate the objects so I can use them? Or is this just a really hard problem to solve?

Hi, is it possible in pulumi to implement a custom resource/provider in typescript? We need to create some resources in a system for which there is currently no pulumi provider

Hi folks, I am starting with Pulumi setting up my GitLab. As part of the setup I'd like to create a branch

develop

. For GitHub there is such a resource. For GitLab not. Where/how do I start writing such thingy? Looks like cgrotz questions points into the same direction.

New one for you guys. What could cause this?

Ignore that one. Solved it. Apparently that key should be an object and not an array.

New one though. This hasn't been resolved.

What's weird about it is that I have 2 projects, one where the line that breaks works and the other doesn't break.

That one breaks

that doesn't

same dependencies in both.

anyone out there doing a monorepo? kind of a lot of trade offs for going with a single monster pulumi app (long term complexity? security?) vs config duplication and running N pulumi jobs for each new env. the more i think about it, the more i like the single pulumi app