https://pulumi.com logo
#general
Title
# general
c

colossal-vr-62639

06/28/2023, 4:31 PM
I'm looking at incorporating a set of Policies for our workloads on Azure and found https://kics.io/. Has anyone incorporated this into their Pulumi based systems? If so, would you mind sharing your experiences?
s

salmon-account-74572

06/28/2023, 4:41 PM
I haven’t worked with it (yet, will probably take it for a spin), but it looks like it only supports Pulumi YAML.
f

fast-vr-6049

06/28/2023, 5:42 PM
This looks incredibly useful, but sadly it only having support for YAML really hampers its relevance. I'll be keeping an eye on it, though!
A little side thought: rather than getting Kics to support all the languages Pulumi supports, perhaps the experimental Pulumi update plans could be leveraged instead?
s

salmon-account-74572

06/28/2023, 6:00 PM
Agreed, that would be a good avenue of integration to explore
c

colossal-vr-62639

06/28/2023, 6:05 PM
I'm considering seeing if I can find a way to allow it to support Pulumi's plans
f

fast-vr-6049

06/28/2023, 6:24 PM
Yes! That's what I was referring to
c

colossal-vr-62639

06/30/2023, 11:31 AM
There is a slight issue with using Update plans and that is if you introduce "new" policies that affect resources that were already provisioned, you won't be able to pick up issues with those?