No matter how you like to participate in developer communities, Pulumi wants to meet you there. If you want to meet other Pulumi users to share use-cases and best practices, contribute code or documentation, see us at an event, or just tell a story about something cool you did with Pulumi, you are part of our community.

Pulumi Community

For the shared NSG, are you using the `SecurityRule` resource, or the `securityRules` input on the NSG itself?

In shared stack I am creating `NetworkSecurityGroup` and inside of it I am specifying list of `SecurityRuleArgs` that relevant at that point in time. In compute stack I am creating `SecurityRule` with reference to NSQ that was created in Shared stack.

If I get you correctly you suggest separate creating NSQ and rules for it in shared stack?

just needs a change in the `shared` stack so that instead of using `SecurityRuleArgs` inline, you specify them the same way as your `compute` stack with `SecurityRule` resources.

Specifying them inline makes it "authoritative", so clobbers any rules specified externally

That make sense, thank you for nice advice:+1: